Fixed: Removed the added G in KMS Client result. Another update for vista/7 Product channel results, if it not detect properly (as tried to look for EXACT wording - which is hit and miss in autoit syntax!) - then it will show hopefully the right name cut from the full result data... Additional information Will look into the product key routine glitch which sometimes shows bbbbb when it not a mak key that was used. Hopefully getting the win7 license channel data results more accurate, v.56 has my first phase of the new routine's code added in testing.
I have started work again on mrp v148, nothing to report only a few tweaks to code at this time and no testing yet as still in editor.
One of my laptops: Code: ------------------------------------------------------------------------------------------------------------------- Query Tool GUI v0.10.0.56 ------------------------------------------------------------------------------------------------------------------- Log Date {UTC}: 10/28/2022 -- 00:31 {24-hour} Some results may be shortened to fit the output stage, such as RAM information. This is the postable report that does not contain full serial or sensitive information. =================================================================================================================== Operating System Information =================================================================================================================== Installation Type : Client Name : Microsoft Windows 10 Education OS/CPU Architecture : CPU and OS is 64 bit Build : 10.0.19045 Language : English (United States) Native Language : English Installed/Available Languages : en-US Operating System SKU : 121 Experience Pack : 120.2212.4180.0 Windows Key Installed : VCFB2 (Last 5 digits shown) Installation Date : 6/19/2021 at 22:1 PM {UTC} MSDM Key Detected : Not Present Dirty Shutdown Count : N/A TPM Information : N/A =================================================================================================================== System Drive C: Partition Information =================================================================================================================== Drive Type : SSD BUS Type : Serial ATA (SATA) Total Space : 237.44 GB Free Space : 203.39 GB Partition Type : GPT Firmware Boot Type : UEFI Mode Secure Boot Status : Disabled [Ref:1] File System : NTFS Model Name : SAMSUNG MZNLN256HCHP-00000 =================================================================================================================== Memory Information =================================================================================================================== Total Physical : 8249504 KB (7.87 GB) Available Physical : 5228024 KB (4.99 GB) Total Page Size : 16638112 KB (15.87 GB) Available Page Size : 13435376 KB (12.81 GB) Total Virtual Size : 4194176 KB (4 GB) Available Virtual : 4012048 KB (3.83 GB) Memory Type : DDR4 Memory Error Correction : Non-ECC Memory Slots Fitted : 2 DIMM Information {First Four} : ChannelA-DIMM0 4096MB @ 2133MHz ChannelB-DIMM0 4096MB @ 2133MHz =================================================================================================================== Graphics Information =================================================================================================================== Adaptor 1 Name : Intel(R) HD Graphics 530 Adaptor 1 Memory : 1024 MB (1 GB) {Routine:P1} Adaptor 1 DACTyp : Internal Adaptor 2 Name : NVIDIA GeForce GTX 960M Adaptor 2 Memory : 4096 MB (4 GB) {Routine:P1} Adaptor 2 DACType : Integrated RAMDAC =================================================================================================================== Network Adaptor Information =================================================================================================================== Adaptor 1 Name : TAP-Windows Adapter V9 Connection Status : Media Disconnected Adaptor 2 Name : Realtek PCIe GBE Family Controller Connection Status : Media Disconnected Adaptor 3 Name : Qualcomm Atheros QCA61x4A Wireless Network Adapter Connection Status : Connected =================================================================================================================== Processor 1 Information =================================================================================================================== Name : Intel(R) Core(TM) i5-6300HQ CPU @ 2.30GHz Architecture : 64 L2 Cache Size : 1024 L3 Cache Size : 6144 Current Clock Speed : 2300 Physical Cores : 4 Logical Cores : 4 Processor Id : BFEBFBFF000506E3 Virtualization Mode : Enabled Manufacturer : GenuineIntel Description : Intel64 Family 6 Model 94 Stepping 3 =================================================================================================================== DMI/BIOS Information =================================================================================================================== System Manufacturer : Acer System Product Name : Aspire VN7-792G BaseBoard Manufacturer : Acer BaseBoard Product : Aspire VN7-792G BaseBoard Version : V1.09 BIOS Vendor : Insyde Corp. BIOS Release Date : 05/17/2016 BIOS Version : V1.09 Primary BIOS : True SMBIOS Present : True SMBIOS Version : 3.0 SLIC/BIOS Data : ACRSYS - 0 Valid SLIC Name : Acer Possible Brand Theme : Acer =================================================================================================================== Miscellaneous Information =================================================================================================================== Which MRP Version Used : CY21M05D28-R137.1.BR Installed .Net Frameworks : 2.0 3.0 3.5 4.8 4.0 Installed Powershell Versions : 1.0, 2.0, 3.0, 4.0, 5.0, 5.1 Security Product Name{s} : Windows Defender Defender Tamper Protection : Disabled? {Value should be 0 for disable} Defender Service Status : Auto Windows Firewall Service State : Running {Reg: Auto} Windows Activation Status : Volume activation will expire in 8009560 minutes Windows Licence Reason : Verify the products use rights, as no SLIC/MSDM is present Windows Product Key Channel : KMS:Client {VOLUME_KMSCLIENT} -------------------------------------------------------------------------------------------------------------------
I have noticed that Tamper Protection has changed from the 0 and 1 original settings, there has been a 4 which i assumed another tweaking program thought was disable like 4 for services, so i need to research these new numbers and what they do..
Code: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender\Features TamperProtection DWORD 0 = Off 5 = On DWORD value of 4 indicates both Tamper Protection and Cloud-delivered protection have been set to 'Off'. M$ like to change things about don't they
For the next GUI QT update: Tamper Protection updated results to cover new changes - if 0,1,4 or 5 new text added. More KMS info where available, plus shows days and minutes now. The renewal (hook) is a simple check for the SPP...dll file existence - if present then renewal most likely in place, if not exist then result will be No in that scenario, also No or N/A by default setting of the variable. Code: Security Product Name{s} : ESET Security Defender Tamper Protection : Both Tamper and Cloud-delivered Protections are disabled Defender Service Status : Disabled Windows Firewall Service State : Running {Reg: Auto} Windows Activation Status : Activated Windows Licence Reason : Digital Store Licence Windows Product Key Channel : Retail {RETAIL} with HWID Device has KMS Enabled : No KMS Auto Renewal (hook) : No Code: Security Product Name{s} : Windows Defender Defender Tamper Protection : Enabled Defender Service Status : Auto Windows Firewall Service State : Running {Reg: Auto} Windows Activation Status : VL activation expires 179 Days / 259168 minutes Windows Licence Reason : Valid key was used for the product's licensing channel Windows Product Key Channel : KMS:Client {VOLUME_KMSCLIENT} Device has KMS Enabled : Yes KMS Auto Renewal (hook) : No Still testing so not uploaded at moment will be later this afternoon. Product key - that is a weird one as the routine has not been altered since it was added ages ago also the code is pretty much standard registry reading and parsing etc...
For those curious about the product key decoding: Spoiler: AutoIT - DecodeProductKey Function Code: $WinProdKey = _DecodeProductKey("Windows") if $WinProdKey <> "" then $WinProdKey_5 = StringRight ( $WinProdKey, 5 ) & " (Last 5 digits shown)" Func _DecodeProductKey($Product, $Offset = 0) Local $sKey[29], $Value = 0, $hi = 0, $n = 0, $i = 0, $dlen = 29, $slen = 15, $Result, $bKey, $iKeyOffset = 52, $RegKey $bKey = RegRead($sHKLM & "\SOFTWARE\Microsoft\Windows NT\CurrentVersion", "DigitalProductId") if not @error Then Switch $Product Case "Windows" $bKey = RegRead($sHKLM & "\SOFTWARE\Microsoft\Windows NT\CurrentVersion", "DigitalProductId") EndSwitch If Not BinaryLen($bKey) Then Return "" Local $aKeys[BinaryLen($bKey)] For $i = 0 To UBound($aKeys) - 1 $aKeys[$i] = Int(BinaryMid($bKey, $i + 1, 1)) Next Local Const $isWin8 = BitAND(BitShift($aKeys[$iKeyOffset + 14], 3), 1) $aKeys[$iKeyOffset + 14] = BitOR(BitAND($aKeys[$iKeyOffset + 14], 0xF7), BitShift(BitAND($isWin8, 2), -2)) $i = 24 Local $sChars = "BCDFGHJKMPQRTVWXY2346789", $iCur, $iX, $sKeyOutput, $iLast While $i > -1 $iCur = 0 $iX = 14 While $iX > -1 $iCur = BitShift($iCur, -8) $iCur = $aKeys[$iX + $iKeyOffset] + $iCur $aKeys[$iX + $iKeyOffset] = Int($iCur / 24) $iCur = Mod($iCur, 24) $iX -= 1 WEnd $i -= 1 $sKeyOutput = StringMid($sChars, $iCur + 1, 1) & $sKeyOutput $iLast = $iCur WEnd If $isWin8 Then $sKeyOutput = StringMid($sKeyOutput, 2, $iLast) & "N" & StringTrimLeft($sKeyOutput, $iLast + 1) EndIf Return StringRegExpReplace($sKeyOutput, '(\w{5})(\w{5})(\w{5})(\w{5})(\w{5})', '\1-\2-\3-\4-\5') EndIf EndFunc
Updated the windows key decoding, shows normal key, pid4, default and default4 keys.... example: Code: Windows Key{s} Installed : Key1 : 7CFBY (Last 5 digits shown) Windows Key{s} Installed : DpID4 : 7CFBY (Last 5 digits shown) Windows Key{s} Installed : Default : 8HV2C (Last 5 digits shown) Windows Key{s} Installed : Default4 : 8HV2C (Last 5 digits shown)
1. Added win10/11 UBR value also Display Version iee 20H2 etc where present. 2. Updated Product Key detection shows extra values if present. 3. Few other internal code tweaks to hopefully get better results.
Adjusted font size for w8.x to 11 points instead of 12 plus have adjusted the long text lines, full length lines will always be in the saved reports, only the GUI will have adjusted font/text to allow best look.
Made GUI slightly longer vertically to allow new lines to be added Added 'Build Branch' WIn 10/11 such as vb_release etc. Not available below w10 so N/A shown. Added Product ID this is the numeric value of the installed OS and is generally available so it not need to be obscured, Only for w8.x and above and N/A for below w8.0