mirror of
https://github.com/massgravel/Microsoft-Activation-Scripts.git
synced 2024-11-30 14:05:39 +08:00
1369 lines
42 KiB
Batchfile
1369 lines
42 KiB
Batchfile
@set masver=2.6
|
|
@setlocal DisableDelayedExpansion
|
|
@echo off
|
|
|
|
|
|
|
|
::============================================================================
|
|
::
|
|
:: This script is a part of 'Microsoft-Activation-Scripts' (MAS) project.
|
|
::
|
|
:: Homepage: mass grave[.]dev
|
|
:: Email: windowsaddict@protonmail.com
|
|
::
|
|
::============================================================================
|
|
|
|
|
|
|
|
::========================================================================================================================================
|
|
|
|
:: Set Path variable, it helps if it is misconfigured in the system
|
|
|
|
set "PATH=%SystemRoot%\System32;%SystemRoot%\System32\wbem;%SystemRoot%\System32\WindowsPowerShell\v1.0\"
|
|
if exist "%SystemRoot%\Sysnative\reg.exe" (
|
|
set "PATH=%SystemRoot%\Sysnative;%SystemRoot%\Sysnative\wbem;%SystemRoot%\Sysnative\WindowsPowerShell\v1.0\;%PATH%"
|
|
)
|
|
|
|
:: Re-launch the script with x64 process if it was initiated by x86 process on x64 bit Windows
|
|
:: or with ARM64 process if it was initiated by x86/ARM32 process on ARM64 Windows
|
|
|
|
set "_cmdf=%~f0"
|
|
for %%# in (%*) do (
|
|
if /i "%%#"=="r1" set r1=1
|
|
if /i "%%#"=="r2" set r2=1
|
|
if /i "%%#"=="-qedit" (
|
|
reg add HKCU\Console /v QuickEdit /t REG_DWORD /d "1" /f %nul1%
|
|
rem check the code below admin elevation to understand why it's here
|
|
)
|
|
)
|
|
|
|
if exist %SystemRoot%\Sysnative\cmd.exe if not defined r1 (
|
|
setlocal EnableDelayedExpansion
|
|
start %SystemRoot%\Sysnative\cmd.exe /c ""!_cmdf!" %* r1"
|
|
exit /b
|
|
)
|
|
|
|
:: Re-launch the script with ARM32 process if it was initiated by x64 process on ARM64 Windows
|
|
|
|
if exist %SystemRoot%\SysArm32\cmd.exe if %PROCESSOR_ARCHITECTURE%==AMD64 if not defined r2 (
|
|
setlocal EnableDelayedExpansion
|
|
start %SystemRoot%\SysArm32\cmd.exe /c ""!_cmdf!" %* r2"
|
|
exit /b
|
|
)
|
|
|
|
::========================================================================================================================================
|
|
|
|
set "blank="
|
|
set "mas=ht%blank%tps%blank%://mass%blank%grave.dev/"
|
|
|
|
:: Check if Null service is working, it's important for the batch script
|
|
|
|
sc query Null | find /i "RUNNING"
|
|
if %errorlevel% NEQ 0 (
|
|
echo:
|
|
echo Null service is not running, script may crash...
|
|
echo:
|
|
echo:
|
|
echo Help - %mas%troubleshoot.html
|
|
echo:
|
|
echo:
|
|
ping 127.0.0.1 -n 10
|
|
)
|
|
cls
|
|
|
|
:: Check LF line ending
|
|
|
|
pushd "%~dp0"
|
|
>nul findstr /v "$" "%~nx0" && (
|
|
echo:
|
|
echo Error: Script either has LF line ending issue or an empty line at the end of the script is missing.
|
|
echo:
|
|
ping 127.0.0.1 -n 6 >nul
|
|
popd
|
|
exit /b
|
|
)
|
|
popd
|
|
|
|
::========================================================================================================================================
|
|
|
|
cls
|
|
color 07
|
|
title Troubleshoot %masver%
|
|
|
|
set _args=
|
|
set _elev=
|
|
|
|
set _args=%*
|
|
if defined _args set _args=%_args:"=%
|
|
if defined _args (
|
|
for %%A in (%_args%) do (
|
|
if /i "%%A"=="-el" set _elev=1
|
|
)
|
|
)
|
|
|
|
set "nul1=1>nul"
|
|
set "nul2=2>nul"
|
|
set "nul6=2^>nul"
|
|
set "nul=>nul 2>&1"
|
|
|
|
set psc=powershell.exe
|
|
set winbuild=1
|
|
for /f "tokens=6 delims=[]. " %%G in ('ver') do set winbuild=%%G
|
|
|
|
set _NCS=1
|
|
if %winbuild% LSS 10586 set _NCS=0
|
|
if %winbuild% GEQ 10586 reg query "HKCU\Console" /v ForceV2 %nul2% | find /i "0x0" %nul1% && (set _NCS=0)
|
|
|
|
call :_colorprep
|
|
|
|
set "nceline=echo: &echo ==== ERROR ==== &echo:"
|
|
set "eline=echo: &call :_color %Red% "==== ERROR ====" &echo:"
|
|
set "line=_________________________________________________________________________________________________"
|
|
if %~z0 GEQ 200000 (set "_exitmsg=Go back") else (set "_exitmsg=Exit")
|
|
|
|
::========================================================================================================================================
|
|
|
|
if %winbuild% LSS 7600 (
|
|
%nceline%
|
|
echo Unsupported OS version detected [%winbuild%].
|
|
echo Project is supported only for Windows 7/8/8.1/10/11 and their Server equivalent.
|
|
goto at_done
|
|
)
|
|
|
|
for %%# in (powershell.exe) do @if "%%~$PATH:#"=="" (
|
|
%nceline%
|
|
echo Unable to find powershell.exe in the system.
|
|
goto at_done
|
|
)
|
|
|
|
::========================================================================================================================================
|
|
|
|
:: Fix special characters limitation in path name
|
|
|
|
set "_work=%~dp0"
|
|
if "%_work:~-1%"=="\" set "_work=%_work:~0,-1%"
|
|
|
|
set "_batf=%~f0"
|
|
set "_batp=%_batf:'=''%"
|
|
|
|
set _PSarg="""%~f0""" -el %_args%
|
|
|
|
set "_ttemp=%userprofile%\AppData\Local\Temp"
|
|
|
|
setlocal EnableDelayedExpansion
|
|
|
|
::========================================================================================================================================
|
|
|
|
echo "!_batf!" | find /i "!_ttemp!" %nul1% && (
|
|
if /i not "!_work!"=="!_ttemp!" (
|
|
%nceline%
|
|
echo Script is launched from the temp folder,
|
|
echo Most likely you are running the script directly from the archive file.
|
|
echo:
|
|
echo Extract the archive file and launch the script from the extracted folder.
|
|
goto at_done
|
|
)
|
|
)
|
|
|
|
::========================================================================================================================================
|
|
|
|
:: Elevate script as admin and pass arguments and preventing loop
|
|
|
|
%nul1% fltmc || (
|
|
if not defined _elev %psc% "start cmd.exe -arg '/c \"!_PSarg:'=''!\"' -verb runas" && exit /b
|
|
%nceline%
|
|
echo This script needs admin rights.
|
|
echo To do so, right click on this script and select 'Run as administrator'.
|
|
goto at_done
|
|
)
|
|
|
|
::========================================================================================================================================
|
|
|
|
:: This code disables QuickEdit for this cmd.exe session only without making permanent changes to the registry
|
|
:: It is added because clicking on the script window pauses the operation and leads to the confusion that script stopped due to an error
|
|
|
|
for %%# in (%_args%) do (if /i "%%#"=="-qedit" set quedit=1)
|
|
|
|
reg query HKCU\Console /v QuickEdit %nul2% | find /i "0x0" %nul1% || if not defined quedit (
|
|
reg add HKCU\Console /v QuickEdit /t REG_DWORD /d "0" /f %nul1%
|
|
start cmd.exe /c ""!_batf!" %_args% -qedit"
|
|
rem quickedit reset code is added at the starting of the script instead of here because it takes time to reflect in some cases
|
|
exit /b
|
|
)
|
|
|
|
::========================================================================================================================================
|
|
|
|
:: Check for updates
|
|
|
|
set -=
|
|
set old=
|
|
|
|
for /f "delims=[] tokens=2" %%# in ('ping -4 -n 1 updatecheck.mass%-%grave.dev') do (
|
|
if not [%%#]==[] (echo "%%#" | find "127.69" %nul1% && (echo "%%#" | find "127.69.%masver%" %nul1% || set old=1))
|
|
)
|
|
|
|
if defined old (
|
|
echo ________________________________________________
|
|
%eline%
|
|
echo You are running outdated version MAS %masver%
|
|
echo ________________________________________________
|
|
echo:
|
|
echo [1] Get Latest MAS
|
|
echo [0] Continue Anyway
|
|
echo:
|
|
call :_color %_Green% "Enter a menu option in the Keyboard [1,0] :"
|
|
choice /C:10 /N
|
|
if !errorlevel!==2 rem
|
|
if !errorlevel!==1 (start ht%-%tps://github.com/mass%-%gravel/Microsoft-Acti%-%vation-Scripts & start %mas% & exit /b)
|
|
)
|
|
cls
|
|
|
|
::========================================================================================================================================
|
|
|
|
setlocal DisableDelayedExpansion
|
|
|
|
:: Check desktop location
|
|
|
|
set desktop=
|
|
for /f "skip=2 tokens=2*" %%a in ('reg query "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders" /v Desktop') do call set "desktop=%%b"
|
|
if not defined desktop for /f "delims=" %%a in ('%psc% "& {write-host $([Environment]::GetFolderPath('Desktop'))}"') do call set "desktop=%%a"
|
|
|
|
if not defined desktop (
|
|
%eline%
|
|
echo Desktop location was not detected, aborting...
|
|
goto at_done
|
|
)
|
|
|
|
setlocal EnableDelayedExpansion
|
|
|
|
::========================================================================================================================================
|
|
|
|
:at_menu
|
|
|
|
cls
|
|
color 07
|
|
title Troubleshoot %masver%
|
|
mode con cols=77 lines=30
|
|
|
|
echo:
|
|
echo:
|
|
echo:
|
|
echo:
|
|
echo: _______________________________________________________________
|
|
echo:
|
|
call :_color2 %_White% " [1] " %_Green% "Help"
|
|
echo: ___________________________________________________
|
|
echo:
|
|
echo: [2] Dism RestoreHealth
|
|
echo: [3] SFC Scannow
|
|
echo:
|
|
echo: [4] Fix WMI
|
|
echo: [5] Fix Licensing
|
|
echo: [6] Fix WPA Registry
|
|
echo: ___________________________________________________
|
|
echo:
|
|
echo: [0] %_exitmsg%
|
|
echo: _______________________________________________________________
|
|
echo:
|
|
call :_color2 %_White% " " %_Green% "Enter a menu option in the Keyboard :"
|
|
choice /C:1234560 /N
|
|
set _erl=%errorlevel%
|
|
|
|
if %_erl%==7 exit /b
|
|
if %_erl%==6 start %mas%fix-wpa-registry.html &goto at_menu
|
|
if %_erl%==5 goto:retokens
|
|
if %_erl%==4 goto:fixwmi
|
|
if %_erl%==3 goto:sfcscan
|
|
if %_erl%==2 goto:dism_rest
|
|
if %_erl%==1 start %mas%troubleshoot.html &goto at_menu
|
|
goto :at_menu
|
|
|
|
::========================================================================================================================================
|
|
|
|
:dism_rest
|
|
|
|
cls
|
|
mode 98, 30
|
|
title Dism /English /Online /Cleanup-Image /RestoreHealth
|
|
|
|
if %winbuild% LSS 9200 (
|
|
%eline%
|
|
echo Unsupported OS version Detected.
|
|
echo This command is supported only for Windows 8/8.1/10/11 and their Server equivalent.
|
|
goto :at_back
|
|
)
|
|
|
|
set _int=
|
|
for %%a in (l.root-servers.net resolver1.opendns.com download.windowsupdate.com google.com) do if not defined _int (
|
|
for /f "delims=[] tokens=2" %%# in ('ping -n 1 %%a') do (if not [%%#]==[] set _int=1)
|
|
)
|
|
|
|
echo:
|
|
if defined _int (
|
|
echo Checking Internet Connection [Connected]
|
|
) else (
|
|
call :_color2 %_White% " " %Red% "Checking Internet Connection [Not connected]"
|
|
)
|
|
|
|
echo %line%
|
|
echo:
|
|
echo Dism uses Windows Update to provide the files required to fix corruption.
|
|
echo This will take 5-15 minutes or more..
|
|
echo %line%
|
|
echo:
|
|
echo Notes:
|
|
echo:
|
|
call :_color2 %_White% " - " %Gray% "Make sure the Internet is connected."
|
|
call :_color2 %_White% " - " %Gray% "Make sure the Windows update is properly working."
|
|
echo:
|
|
echo %line%
|
|
echo:
|
|
choice /C:09 /N /M "> [9] Continue [0] Go back : "
|
|
if %errorlevel%==1 goto at_menu
|
|
|
|
cls
|
|
mode 110, 30
|
|
%psc% Stop-Service TrustedInstaller -force %nul%
|
|
|
|
set _time=
|
|
for /f %%a in ('%psc% "Get-Date -format HH_mm_ss"') do set _time=%%a
|
|
echo:
|
|
echo Applying the command,
|
|
echo dism /english /online /cleanup-image /restorehealth
|
|
dism /english /online /cleanup-image /restorehealth
|
|
|
|
%psc% Stop-Service TrustedInstaller -force %nul%
|
|
|
|
if not exist "!desktop!\AT_Logs\" md "!desktop!\AT_Logs\" %nul%
|
|
|
|
call :compresslog cbs\CBS.log RHealth_CBS %nul%
|
|
call :compresslog DISM\dism.log RHealth_DISM %nul%
|
|
|
|
if not exist "!desktop!\AT_Logs\RHealth_CBS_%_time%.cab" (
|
|
copy /y /b "%SystemRoot%\logs\cbs\cbs.log" "!desktop!\AT_Logs\RHealth_CBS_%_time%.log" %nul%
|
|
)
|
|
|
|
if not exist "!desktop!\AT_Logs\RHealth_DISM_%_time%.cab" (
|
|
copy /y /b "%SystemRoot%\logs\DISM\dism.log" "!desktop!\AT_Logs\RHealth_DISM_%_time%.log" %nul%
|
|
)
|
|
|
|
echo:
|
|
call :_color %Gray% "CBS and DISM logs are copied to the AT_Logs folder on the dekstop."
|
|
goto :at_back
|
|
|
|
::========================================================================================================================================
|
|
|
|
:sfcscan
|
|
|
|
cls
|
|
mode 98, 30
|
|
title sfc /scannow
|
|
|
|
echo:
|
|
echo %line%
|
|
echo:
|
|
echo System File Checker will repair missing or corrupted system files.
|
|
echo This will take 10-15 minutes or more..
|
|
echo:
|
|
echo If SFC could not fix something, then run the command again to see if it may be able
|
|
echo to the next time. Sometimes it may take running the sfc /scannow command 3 times
|
|
echo restarting the PC after each time to completely fix everything that it's able to.
|
|
echo:
|
|
echo %line%
|
|
echo:
|
|
choice /C:09 /N /M "> [9] Continue [0] Go back : "
|
|
if %errorlevel%==1 goto at_menu
|
|
|
|
cls
|
|
%psc% Stop-Service TrustedInstaller -force %nul%
|
|
|
|
set _time=
|
|
for /f %%a in ('%psc% "Get-Date -format HH_mm_ss"') do set _time=%%a
|
|
echo:
|
|
echo Applying the command,
|
|
echo sfc /scannow
|
|
sfc /scannow
|
|
|
|
%psc% Stop-Service TrustedInstaller -force %nul%
|
|
|
|
if not exist "!desktop!\AT_Logs\" md "!desktop!\AT_Logs\" %nul%
|
|
|
|
call :compresslog cbs\CBS.log SFC_CBS %nul%
|
|
|
|
if not exist "!desktop!\AT_Logs\SFC_CBS_%_time%.cab" (
|
|
copy /y /b "%SystemRoot%\logs\cbs\cbs.log" "!desktop!\AT_Logs\SFC_CBS_%_time%.log" %nul%
|
|
)
|
|
|
|
echo:
|
|
call :_color %Gray% "CBS log is copied to the AT_Logs folder on the dekstop."
|
|
goto :at_back
|
|
|
|
::========================================================================================================================================
|
|
|
|
:retokens
|
|
|
|
cls
|
|
mode con cols=125 lines=32
|
|
%psc% "&{$W=$Host.UI.RawUI.WindowSize;$B=$Host.UI.RawUI.BufferSize;$W.Height=31;$B.Height=200;$Host.UI.RawUI.WindowSize=$W;$Host.UI.RawUI.BufferSize=$B;}"
|
|
title Fix Licensing ^(ClipSVC ^+ Office vNext ^+ SPP ^+ OSPP^)
|
|
|
|
echo:
|
|
echo %line%
|
|
echo:
|
|
echo Notes:
|
|
echo:
|
|
echo - It helps in troubleshooting activation issues.
|
|
echo:
|
|
echo - This option will,
|
|
echo - Deactivate Windows and Office, you may need to reactivate
|
|
echo If Windows is activated with motherboard / OEM / Digital license then don't worry
|
|
echo:
|
|
echo - Clear ClipSVC, Office vNext, SPP and OSPP licenses
|
|
echo - Fix SPP permissions of tokens folder and registries
|
|
echo - Trigger the repair option for Office.
|
|
echo:
|
|
call :_color2 %_White% " - " %Red% "Apply it only when it is necessary."
|
|
echo:
|
|
echo %line%
|
|
echo:
|
|
choice /C:09 /N /M "> [9] Continue [0] Go back : "
|
|
if %errorlevel%==1 goto at_menu
|
|
|
|
::========================================================================================================================================
|
|
|
|
:: Rebuild ClipSVC Licences
|
|
|
|
cls
|
|
:cleanlicensing
|
|
|
|
echo:
|
|
echo %line%
|
|
echo:
|
|
call :_color %Blue% "Rebuilding ClipSVC Licences"
|
|
echo:
|
|
|
|
if %winbuild% LSS 10240 (
|
|
echo ClipSVC Licence rebuilding is supported only on Win 10/11 and Server equivalent.
|
|
echo Skipping...
|
|
goto :cleanvnext
|
|
)
|
|
|
|
%psc% "(([WMISEARCHER]'SELECT Name FROM SoftwareLicensingProduct WHERE LicenseStatus=1 AND GracePeriodRemaining=0 AND PartialProductKey IS NOT NULL').Get()).Name" %nul2% | findstr /i "Windows" %nul1% && (
|
|
echo Windows is permanently activated.
|
|
echo Skipping rebuilding ClipSVC licences...
|
|
goto :cleanvnext
|
|
)
|
|
|
|
echo Stopping ClipSVC service...
|
|
%psc% Stop-Service ClipSVC -force %nul%
|
|
timeout /t 2 %nul%
|
|
|
|
echo:
|
|
echo Applying the command to Clean ClipSVC Licences...
|
|
echo rundll32 clipc.dll,ClipCleanUpState
|
|
|
|
rundll32 clipc.dll,ClipCleanUpState
|
|
|
|
if %winbuild% LEQ 10240 (
|
|
echo [Successful]
|
|
) else (
|
|
if exist "%ProgramData%\Microsoft\Windows\ClipSVC\tokens.dat" (
|
|
call :_color %Red% "[Failed]"
|
|
) else (
|
|
echo [Successful]
|
|
)
|
|
)
|
|
|
|
:: Below registry key (Volatile & Protected) gets created after the ClipSVC License cleanup command, and gets automatically deleted after
|
|
:: system restart. It needs to be deleted to activate the system without restart.
|
|
|
|
set "RegKey=HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ClipSVC\Volatile\PersistedSystemState"
|
|
set "_ident=HKU\S-1-5-19\SOFTWARE\Microsoft\IdentityCRL"
|
|
|
|
reg query "%RegKey%" %nul% && %nul% call :regownstart
|
|
reg delete "%RegKey%" /f %nul%
|
|
|
|
echo:
|
|
echo Deleting a Volatile ^& Protected Registry Key...
|
|
echo [%RegKey%]
|
|
reg query "%RegKey%" %nul% && (
|
|
call :_color %Red% "[Failed]"
|
|
echo Restart the system, that will delete this registry key automatically.
|
|
) || (
|
|
echo [Successful]
|
|
)
|
|
|
|
:: Clear HWID token related registry to fix activation incase if there is any corruption
|
|
|
|
echo:
|
|
echo Deleting a IdentityCRL Registry Key...
|
|
echo [%_ident%]
|
|
reg delete "%_ident%" /f %nul%
|
|
reg query "%_ident%" %nul% && (
|
|
call :_color %Red% "[Failed]"
|
|
) || (
|
|
echo [Successful]
|
|
)
|
|
|
|
%psc% Stop-Service ClipSVC -force %nul%
|
|
|
|
:: Rebuild ClipSVC folder to fix permission issues
|
|
|
|
echo:
|
|
if %winbuild% GTR 10240 (
|
|
echo Deleting Folder %ProgramData%\Microsoft\Windows\ClipSVC\
|
|
rmdir /s /q "C:\ProgramData\Microsoft\Windows\ClipSvc" %nul%
|
|
|
|
if exist "%ProgramData%\Microsoft\Windows\ClipSVC\" (
|
|
call :_color %Red% "[Failed]"
|
|
) else (
|
|
echo [Successful]
|
|
)
|
|
|
|
echo:
|
|
echo Rebuilding Folder %ProgramData%\Microsoft\Windows\ClipSVC\
|
|
%psc% Start-Service ClipSVC %nul%
|
|
timeout /t 3 %nul%
|
|
if not exist "%ProgramData%\Microsoft\Windows\ClipSVC\" timeout /t 5 %nul%
|
|
if not exist "%ProgramData%\Microsoft\Windows\ClipSVC\" (
|
|
call :_color %Red% "[Failed]"
|
|
) else (
|
|
echo [Successful]
|
|
)
|
|
)
|
|
|
|
echo:
|
|
echo Restarting [wlidsvc LicenseManager] services...
|
|
for %%# in (wlidsvc LicenseManager) do (%psc% Restart-Service %%# %nul%)
|
|
|
|
::========================================================================================================================================
|
|
|
|
:: Find remnants of Office vNext license block and remove it because it stops non vNext licenses from appearing
|
|
:: https://learn.microsoft.com/en-us/office/troubleshoot/activation/reset-office-365-proplus-activation-state
|
|
|
|
:cleanvnext
|
|
|
|
echo:
|
|
echo %line%
|
|
echo:
|
|
call :_color %Blue% "Clearing Office vNext License"
|
|
echo:
|
|
|
|
setlocal DisableDelayedExpansion
|
|
set "_Local=%LocalAppData%"
|
|
setlocal EnableDelayedExpansion
|
|
|
|
attrib -R "!ProgramData!\Microsoft\Office\Licenses" %nul%
|
|
attrib -R "!_Local!\Microsoft\Office\Licenses" %nul%
|
|
|
|
if exist "!ProgramData!\Microsoft\Office\Licenses\" (
|
|
rd /s /q "!ProgramData!\Microsoft\Office\Licenses\" %nul%
|
|
if exist "!ProgramData!\Microsoft\Office\Licenses\" (
|
|
echo Failed To Delete - !ProgramData!\Microsoft\Office\Licenses\
|
|
) else (
|
|
echo Deleted Folder - !ProgramData!\Microsoft\Office\Licenses\
|
|
)
|
|
) else (
|
|
echo Not Found - !ProgramData!\Microsoft\Office\Licenses\
|
|
)
|
|
|
|
if exist "!_Local!\Microsoft\Office\Licenses\" (
|
|
rd /s /q "!_Local!\Microsoft\Office\Licenses\" %nul%
|
|
if exist "!_Local!\Microsoft\Office\Licenses\" (
|
|
echo Failed To Delete - !_Local!\Microsoft\Office\Licenses\
|
|
) else (
|
|
echo Deleted Folder - !_Local!\Microsoft\Office\Licenses\
|
|
)
|
|
) else (
|
|
echo Not Found - !_Local!\Microsoft\Office\Licenses\
|
|
)
|
|
|
|
|
|
echo:
|
|
for /f "tokens=* delims=" %%a in ('%psc% "Get-ChildItem -Path 'HKLM:\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList' | ForEach-Object { Split-Path -Path $_.PSPath -Leaf }" %nul6%') do (if defined _sid (set "_sid=!_sid! HKU\%%a") else (set "_sid=HKU\%%a"))
|
|
|
|
set regfound=
|
|
for %%# in (HKCU !_sid!) do (
|
|
for %%A in (
|
|
%%#\Software\Microsoft\Office\16.0\Common\Licensing
|
|
%%#\Software\Microsoft\Office\16.0\Common\Identity
|
|
%%#\Software\Microsoft\Office\16.0\Registration
|
|
) do (
|
|
reg query %%A %nul% && (
|
|
set regfound=1
|
|
reg delete %%A /f %nul% && (
|
|
echo Deleted Registry - %%A
|
|
) || (
|
|
echo Failed to Delete - %%A
|
|
)
|
|
)
|
|
)
|
|
)
|
|
if not defined regfound echo Not Found - Office vNext Registry Keys
|
|
|
|
::========================================================================================================================================
|
|
|
|
:: Rebuild SPP Tokens
|
|
|
|
echo:
|
|
echo %line%
|
|
echo:
|
|
call :_color %Blue% "Rebuilding SPP Licensing Tokens"
|
|
echo:
|
|
|
|
call :scandat check
|
|
|
|
if not defined token (
|
|
call :_color %Red% "tokens.dat file not found."
|
|
) else (
|
|
echo tokens.dat file: [%token%]
|
|
)
|
|
|
|
echo:
|
|
set wpainfo=
|
|
for /f "delims=" %%a in ('%psc% "$f=[io.file]::ReadAllText('!_batp!') -split ':wpatest\:.*';iex ($f[1]);" %nul6%') do (set wpainfo=%%a)
|
|
echo "%wpainfo%" | find /i "Error Found" %nul% && (
|
|
call :_color %Red% "WPA Registry Error: %wpainfo%"
|
|
) || (
|
|
echo WPA Registry Count: %wpainfo%
|
|
)
|
|
|
|
set tokenstore=
|
|
for /f "skip=2 tokens=2*" %%a in ('reg query "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SoftwareProtectionPlatform" /v TokenStore %nul6%') do call set "tokenstore=%%b"
|
|
|
|
:: Check sppsvc permissions and apply fixes
|
|
|
|
if %winbuild% GEQ 10240 (
|
|
|
|
echo:
|
|
echo Checking SPP permission related issues...
|
|
call :checkperms
|
|
|
|
if defined permerror (
|
|
|
|
mkdir "%tokenstore%" %nul%
|
|
set "d=$sddl = 'O:BAG:BAD:PAI(A;OICI;FA;;;SY)(A;OICI;FA;;;BA)(A;OICIIO;GR;;;BU)(A;;FR;;;BU)(A;OICI;FA;;;S-1-5-80-123231216-2592883651-3715271367-3753151631-4175906628)';"
|
|
set "d=!d! $AclObject = New-Object System.Security.AccessControl.DirectorySecurity;"
|
|
set "d=!d! $AclObject.SetSecurityDescriptorSddlForm($sddl);"
|
|
set "d=!d! Set-Acl -Path %tokenstore% -AclObject $AclObject;"
|
|
%psc% "!d!" %nul%
|
|
|
|
for %%# in (
|
|
"HKLM:\SYSTEM\WPA_QueryValues, EnumerateSubKeys, WriteKey"
|
|
"HKLM:\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SoftwareProtectionPlatform_SetValue"
|
|
) do for /f "tokens=1,2 delims=_" %%A in (%%#) do (
|
|
set "d=$acl = Get-Acl '%%A';"
|
|
set "d=!d! $rule = New-Object System.Security.AccessControl.RegistryAccessRule ('NT Service\sppsvc', '%%B', 'ContainerInherit, ObjectInherit','None','Allow');"
|
|
set "d=!d! $acl.ResetAccessRule($rule);"
|
|
set "d=!d! $acl.SetAccessRule($rule);"
|
|
set "d=!d! Set-Acl -Path '%%A' -AclObject $acl"
|
|
%psc% "!d!" %nul%
|
|
)
|
|
|
|
call :checkperms
|
|
if defined permerror (
|
|
call :_color %Red% "[Failed To Fix]"
|
|
) else (
|
|
echo [Successfully Fixed]
|
|
)
|
|
) else (
|
|
echo [No Error Found]
|
|
)
|
|
)
|
|
|
|
echo:
|
|
echo Stopping sppsvc service...
|
|
%psc% Stop-Service sppsvc -force %nul%
|
|
|
|
echo:
|
|
call :scandat delete
|
|
call :scandat check
|
|
|
|
if defined token (
|
|
echo:
|
|
call :_color %Red% "Failed to delete .dat files."
|
|
echo:
|
|
)
|
|
|
|
echo:
|
|
echo Reinstalling System Licenses [slmgr /rilc]...
|
|
cscript //nologo %windir%\system32\slmgr.vbs /rilc %nul%
|
|
if %errorlevel% NEQ 0 cscript //nologo %windir%\system32\slmgr.vbs /rilc %nul%
|
|
if %errorlevel% EQU 0 (
|
|
echo [Successful]
|
|
) else (
|
|
call :_color %Red% "[Failed]"
|
|
)
|
|
|
|
call :scandat check
|
|
|
|
echo:
|
|
if not defined token (
|
|
call :_color %Red% "Failed to rebuilt tokens.dat file."
|
|
) else (
|
|
echo tokens.dat file was rebuilt successfully.
|
|
)
|
|
|
|
::========================================================================================================================================
|
|
|
|
:: Rebuild OSPP Tokens
|
|
|
|
echo:
|
|
echo %line%
|
|
echo:
|
|
call :_color %Blue% "Rebuilding OSPP Licensing Tokens"
|
|
echo:
|
|
|
|
sc qc osppsvc %nul% || (
|
|
echo OSPP based Office is not installed
|
|
echo Skipping rebuilding OSPP tokens...
|
|
goto :repairoffice
|
|
)
|
|
|
|
call :scandatospp check
|
|
|
|
if not defined token (
|
|
call :_color %Red% "tokens.dat file not found."
|
|
) else (
|
|
echo tokens.dat file: [%token%]
|
|
)
|
|
|
|
echo:
|
|
echo Stopping osppsvc service...
|
|
%psc% Stop-Service osppsvc -force %nul%
|
|
|
|
echo:
|
|
call :scandatospp delete
|
|
call :scandatospp check
|
|
|
|
if defined token (
|
|
echo:
|
|
call :_color %Red% "Failed to delete .dat files."
|
|
echo:
|
|
)
|
|
|
|
echo:
|
|
echo Starting osppsvc service to generate tokens.dat
|
|
%psc% Start-Service osppsvc %nul%
|
|
call :scandatospp check
|
|
if not defined token (
|
|
%psc% Stop-Service osppsvc -force %nul%
|
|
%psc% Start-Service osppsvc %nul%
|
|
timeout /t 3 %nul%
|
|
)
|
|
|
|
call :scandatospp check
|
|
|
|
echo:
|
|
if not defined token (
|
|
call :_color %Red% "Failed to rebuilt tokens.dat file."
|
|
) else (
|
|
echo tokens.dat file was rebuilt successfully.
|
|
)
|
|
|
|
::========================================================================================================================================
|
|
|
|
:repairoffice
|
|
|
|
echo:
|
|
echo %line%
|
|
echo:
|
|
call :_color %Blue% "Repairing Office Licenses"
|
|
echo:
|
|
|
|
for /f "skip=2 tokens=2*" %%a in ('reg query "HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\Environment" /v PROCESSOR_ARCHITECTURE') do set arch=%%b
|
|
|
|
if /i "%arch%"=="ARM64" (
|
|
echo:
|
|
echo ARM64 Windows Found.
|
|
echo You need to use repair option in Windows settings for Office.
|
|
echo:
|
|
start ms-settings:appsfeatures
|
|
goto :repairend
|
|
)
|
|
|
|
if /i "%arch%"=="x86" (
|
|
set arch=X86
|
|
) else (
|
|
set arch=X64
|
|
)
|
|
|
|
for %%# in (68 86) do (
|
|
for %%A in (msi14 msi15 msi16 c2r14 c2r15 c2r16) do (set %%A_%%#=&set %%Arepair%%#=)
|
|
)
|
|
|
|
set _68=HKLM\SOFTWARE\Microsoft\Office
|
|
set _86=HKLM\SOFTWARE\Wow6432Node\Microsoft\Office
|
|
|
|
reg query %_68%\14.0\CVH /f Click2run /k %nul% && (set "c2r14_68=Office 14.0 C2R x86/x64" & set "c2r14repair68=")
|
|
reg query %_86%\14.0\CVH /f Click2run /k %nul% && (set "c2r14_86=Office 14.0 C2R x86" & set "c2r14repair86=")
|
|
|
|
for /f "skip=2 tokens=2*" %%a in ('"reg query %_86%\14.0\Common\InstallRoot /v Path" %nul6%') do if exist "%%b\EntityPicker.dll" (set "msi14_86=Office 14.0 MSI x86" & set "msi14repair86=%systemdrive%\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Office Setup Controller\Setup.exe")
|
|
for /f "skip=2 tokens=2*" %%a in ('"reg query %_68%\14.0\Common\InstallRoot /v Path" %nul6%') do if exist "%%b\EntityPicker.dll" (set "msi14_68=Office 14.0 MSI x86/x64" & set "msi14repair68=%systemdrive%\Program Files\Common Files\microsoft shared\OFFICE14\Office Setup Controller\Setup.exe")
|
|
for /f "skip=2 tokens=2*" %%a in ('"reg query %_86%\15.0\Common\InstallRoot /v Path" %nul6%') do if exist "%%b\EntityPicker.dll" (set "msi15_86=Office 15.0 MSI x86" & set "msi15repair86=%systemdrive%\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\Office Setup Controller\Setup.exe")
|
|
for /f "skip=2 tokens=2*" %%a in ('"reg query %_68%\15.0\Common\InstallRoot /v Path" %nul6%') do if exist "%%b\EntityPicker.dll" (set "msi15_68=Office 15.0 MSI x86/x64" & set "msi15repair68=%systemdrive%\Program Files\Common Files\microsoft shared\OFFICE15\Office Setup Controller\Setup.exe")
|
|
for /f "skip=2 tokens=2*" %%a in ('"reg query %_86%\16.0\Common\InstallRoot /v Path" %nul6%') do if exist "%%b\EntityPicker.dll" (set "msi16_86=Office 16.0 MSI x86" & set "msi16repair86=%systemdrive%\Program Files (x86)\Common Files\Microsoft Shared\OFFICE16\Office Setup Controller\Setup.exe")
|
|
for /f "skip=2 tokens=2*" %%a in ('"reg query %_68%\16.0\Common\InstallRoot /v Path" %nul6%') do if exist "%%b\EntityPicker.dll" (set "msi16_68=Office 16.0 MSI x86/x64" & set "msi16repair68=%systemdrive%\Program Files\Common Files\Microsoft Shared\OFFICE16\Office Setup Controller\Setup.exe")
|
|
|
|
for /f "skip=2 tokens=2*" %%a in ('"reg query %_86%\15.0\ClickToRun /v InstallPath" %nul6%') do if exist "%%b\root\Licenses\ProPlus*.xrm-ms" (set "c2r15_86=Office 15.0 C2R x86" & set "c2r15repair86=%systemdrive%\Program Files\Microsoft Office 15\Client%arch%\integratedoffice.exe")
|
|
for /f "skip=2 tokens=2*" %%a in ('"reg query %_68%\15.0\ClickToRun /v InstallPath" %nul6%') do if exist "%%b\root\Licenses\ProPlus*.xrm-ms" (set "c2r15_68=Office 15.0 C2R x86/x64" & set "c2r15repair68=%systemdrive%\Program Files\Microsoft Office 15\Client%arch%\integratedoffice.exe")
|
|
for /f "skip=2 tokens=2*" %%a in ('"reg query %_86%\ClickToRun /v InstallPath" %nul6%') do if exist "%%b\root\Licenses16\ProPlus*.xrm-ms" (set "c2r16_86=Office 16.0 C2R x86" & set "c2r16repair86=%systemdrive%\Program Files\Microsoft Office 15\Client%arch%\OfficeClickToRun.exe")
|
|
for /f "skip=2 tokens=2*" %%a in ('"reg query %_68%\ClickToRun /v InstallPath" %nul6%') do if exist "%%b\root\Licenses16\ProPlus*.xrm-ms" (set "c2r16_68=Office 16.0 C2R x86/x64" & set "c2r16repair68=%systemdrive%\Program Files\Microsoft Office 15\Client%arch%\OfficeClickToRun.exe")
|
|
|
|
set uwp16=
|
|
if %winbuild% GEQ 10240 (
|
|
%psc% "Get-AppxPackage -name "Microsoft.Office.Desktop"" | find /i "Office" %nul1% && set uwp16=Office 16.0 UWP
|
|
)
|
|
|
|
set /a counter=0
|
|
echo Checking installed Office versions...
|
|
echo:
|
|
|
|
for %%# in (
|
|
"%msi14_68%"
|
|
"%msi14_86%"
|
|
"%msi15_68%"
|
|
"%msi15_86%"
|
|
"%msi16_68%"
|
|
"%msi16_86%"
|
|
"%c2r14_68%"
|
|
"%c2r14_86%"
|
|
"%c2r15_68%"
|
|
"%c2r15_86%"
|
|
"%c2r16_68%"
|
|
"%c2r16_86%"
|
|
"%uwp16%"
|
|
) do (
|
|
if not "%%#"=="""" (
|
|
set insoff=%%#
|
|
set insoff=!insoff:"=!
|
|
echo [!insoff!]
|
|
set /a counter+=1
|
|
)
|
|
)
|
|
|
|
if %counter% GTR 1 (
|
|
%eline%
|
|
echo Multiple office versions found.
|
|
echo It's recommended to install only one version of office.
|
|
echo ________________________________________________________________
|
|
echo:
|
|
)
|
|
|
|
if %counter% EQU 0 (
|
|
echo:
|
|
echo Installed Office is not found.
|
|
goto :repairend
|
|
echo:
|
|
) else (
|
|
echo:
|
|
call :_color %_Yellow% "A Window will popup, in that Window you need to select [Quick] Repair Option..."
|
|
call :_color %_Yellow% "Press any key to continue..."
|
|
echo:
|
|
pause %nul1%
|
|
)
|
|
|
|
if defined uwp16 (
|
|
echo:
|
|
echo Note: Skipping repair for Office 16.0 UWP.
|
|
echo You need to use reset option in Windows settings for it.
|
|
echo ________________________________________________________________
|
|
echo:
|
|
start ms-settings:appsfeatures
|
|
)
|
|
|
|
set c2r14=
|
|
if defined c2r14_68 set c2r14=1
|
|
if defined c2r14_86 set c2r14=1
|
|
|
|
if defined c2r14 (
|
|
echo:
|
|
echo Note: Skipping repair for Office 14.0 C2R
|
|
echo You need to use Repair option in Windows settings for it.
|
|
echo ________________________________________________________________
|
|
echo:
|
|
start appwiz.cpl
|
|
)
|
|
|
|
if defined msi14_68 if exist "%msi14repair68%" echo Running - "%msi14repair68%" & "%msi14repair68%"
|
|
if defined msi14_86 if exist "%msi14repair86%" echo Running - "%msi14repair86%" & "%msi14repair86%"
|
|
if defined msi15_68 if exist "%msi15repair68%" echo Running - "%msi15repair68%" & "%msi15repair68%"
|
|
if defined msi15_86 if exist "%msi15repair86%" echo Running - "%msi15repair86%" & "%msi15repair86%"
|
|
if defined msi16_68 if exist "%msi16repair68%" echo Running - "%msi16repair68%" & "%msi16repair68%"
|
|
if defined msi16_86 if exist "%msi16repair86%" echo Running - "%msi16repair86%" & "%msi16repair86%"
|
|
if defined c2r15_68 if exist "%c2r15repair68%" echo Running - "%c2r15repair68%" REPAIRUI RERUNMODE & "%c2r15repair68%" REPAIRUI RERUNMODE
|
|
if defined c2r15_86 if exist "%c2r15repair86%" echo Running - "%c2r15repair86%" REPAIRUI RERUNMODE & "%c2r15repair86%" REPAIRUI RERUNMODE
|
|
if defined c2r16_68 if exist "%c2r16repair68%" echo Running - "%c2r16repair68%" scenario=Repair & "%c2r16repair68%" scenario=Repair
|
|
if defined c2r16_86 if exist "%c2r16repair86%" echo Running - "%c2r16repair86%" scenario=Repair & "%c2r16repair86%" scenario=Repair
|
|
|
|
:repairend
|
|
|
|
echo:
|
|
echo %line%
|
|
echo:
|
|
echo:
|
|
call :_color %Green% "Finished"
|
|
goto :at_back
|
|
|
|
::========================================================================================================================================
|
|
|
|
:fixwmi
|
|
|
|
cls
|
|
mode 98, 34
|
|
title Fix WMI
|
|
|
|
:: https://techcommunity.microsoft.com/t5/ask-the-performance-team/wmi-repository-corruption-or-not/ba-p/375484
|
|
|
|
if exist "%SystemRoot%\Servicing\Packages\Microsoft-Windows-Server*Edition~*.mum" (
|
|
%eline%
|
|
echo WMI rebuild is not recommended on Windows Server. Aborting...
|
|
goto :at_back
|
|
)
|
|
|
|
for %%# in (wmic.exe) do @if "%%~$PATH:#"=="" (
|
|
%eline%
|
|
echo wmic.exe file is not found in the system. Aborting...
|
|
goto :at_back
|
|
)
|
|
|
|
echo:
|
|
echo Checking WMI
|
|
call :checkwmi
|
|
|
|
:: Apply basic fix first and check
|
|
|
|
if defined error (
|
|
%psc% Stop-Service Winmgmt -force %nul%
|
|
winmgmt /salvagerepository %nul%
|
|
call :checkwmi
|
|
)
|
|
|
|
if not defined error (
|
|
echo [Working]
|
|
echo No need to apply this option. Aborting...
|
|
goto :at_back
|
|
)
|
|
|
|
call :_color %Red% "[Not Responding]"
|
|
|
|
set _corrupt=
|
|
sc start Winmgmt %nul%
|
|
if %errorlevel% EQU 1060 set _corrupt=1
|
|
sc query Winmgmt %nul% || set _corrupt=1
|
|
for %%G in (DependOnService Description DisplayName ErrorControl ImagePath ObjectName Start Type) do if not defined _corrupt (reg query HKLM\SYSTEM\CurrentControlSet\Services\Winmgmt /v %%G %nul% || set _corrupt=1)
|
|
|
|
echo:
|
|
if defined _corrupt (
|
|
%eline%
|
|
echo Winmgmt service is corrupted. Aborting...
|
|
goto :at_back
|
|
)
|
|
|
|
echo Disabling Winmgmt service
|
|
sc config Winmgmt start= disabled %nul%
|
|
if %errorlevel% EQU 0 (
|
|
echo [Successful]
|
|
) else (
|
|
call :_color %Red% "[Failed] Aborting..."
|
|
sc config Winmgmt start= auto %nul%
|
|
goto :at_back
|
|
)
|
|
|
|
echo:
|
|
echo Stopping Winmgmt service
|
|
%psc% Stop-Service Winmgmt -force %nul%
|
|
%psc% Stop-Service Winmgmt -force %nul%
|
|
%psc% Stop-Service Winmgmt -force %nul%
|
|
sc query Winmgmt | find /i "STOPPED" %nul% && (
|
|
echo [Successful]
|
|
) || (
|
|
call :_color %Red% "[Failed]"
|
|
echo:
|
|
call :_color %Blue% "Its recommended to select [Restart] option and then apply Fix WMI option again."
|
|
echo %line%
|
|
echo:
|
|
choice /C:21 /N /M "> [1] Restart [2] Revert Back Changes :"
|
|
if !errorlevel!==1 (sc config Winmgmt start= auto %nul%&goto :at_back)
|
|
echo:
|
|
echo Restarting...
|
|
shutdown -t 5 -r
|
|
exit
|
|
)
|
|
|
|
echo:
|
|
echo Deleting WMI repository
|
|
rmdir /s /q "%windir%\System32\wbem\repository\" %nul%
|
|
if exist "%windir%\System32\wbem\repository\" (
|
|
call :_color %Red% "[Failed]"
|
|
) else (
|
|
echo [Successful]
|
|
)
|
|
|
|
echo:
|
|
echo Enabling Winmgmt service
|
|
sc config Winmgmt start= auto %nul%
|
|
if %errorlevel% EQU 0 (
|
|
echo [Successful]
|
|
) else (
|
|
call :_color %Red% "[Failed]"
|
|
)
|
|
|
|
call :checkwmi
|
|
if not defined error (
|
|
echo:
|
|
echo Checking WMI
|
|
call :_color %Green% "[Working]"
|
|
goto :at_back
|
|
)
|
|
|
|
echo:
|
|
echo Registering .dll's and Compiling .mof's, .mfl's
|
|
call :registerobj %nul%
|
|
|
|
echo:
|
|
echo Checking WMI
|
|
call :checkwmi
|
|
if defined error (
|
|
call :_color %Red% "[Not Responding]"
|
|
echo:
|
|
echo Run [Dism RestoreHealth] and [SFC Scannow] options and make sure there are no errors.
|
|
) else (
|
|
call :_color %Green% "[Working]"
|
|
)
|
|
|
|
goto :at_back
|
|
|
|
:registerobj
|
|
|
|
:: https://eskonr.com/2012/01/how-to-fix-wmi-issues-automatically/
|
|
|
|
%psc% Stop-Service Winmgmt -force %nul%
|
|
cd /d %systemroot%\system32\wbem\
|
|
regsvr32 /s %systemroot%\system32\scecli.dll
|
|
regsvr32 /s %systemroot%\system32\userenv.dll
|
|
mofcomp cimwin32.mof
|
|
mofcomp cimwin32.mfl
|
|
mofcomp rsop.mof
|
|
mofcomp rsop.mfl
|
|
for /f %%s in ('dir /b /s *.dll') do regsvr32 /s %%s
|
|
for /f %%s in ('dir /b *.mof') do mofcomp %%s
|
|
for /f %%s in ('dir /b *.mfl') do mofcomp %%s
|
|
|
|
winmgmt /salvagerepository
|
|
winmgmt /resetrepository
|
|
exit /b
|
|
|
|
:checkwmi
|
|
|
|
:: https://learn.microsoft.com/en-us/windows/win32/wmisdk/wmi-error-constants
|
|
|
|
set error=
|
|
wmic path Win32_ComputerSystem get CreationClassName /value %nul2% | find /i "computersystem" %nul1%
|
|
if %errorlevel% NEQ 0 (set error=1& exit /b)
|
|
winmgmt /verifyrepository %nul%
|
|
if %errorlevel% NEQ 0 (set error=1& exit /b)
|
|
|
|
cscript //nologo %windir%\system32\slmgr.vbs /dlv %nul%
|
|
cmd /c exit /b %errorlevel%
|
|
echo "0x%=ExitCode%" | findstr /i "0x800410 0x800440" %nul1%
|
|
if %errorlevel% EQU 0 set error=1
|
|
exit /b
|
|
|
|
::========================================================================================================================================
|
|
|
|
:at_back
|
|
|
|
echo:
|
|
echo %line%
|
|
echo:
|
|
call :_color %_Yellow% "Press any key to go back..."
|
|
pause %nul1%
|
|
goto :at_menu
|
|
|
|
::========================================================================================================================================
|
|
|
|
:at_done
|
|
|
|
echo:
|
|
echo Press any key to %_exitmsg%...
|
|
pause %nul1%
|
|
exit /b
|
|
|
|
::========================================================================================================================================
|
|
|
|
:compresslog
|
|
|
|
:: https://stackoverflow.com/a/46268232
|
|
|
|
set "ddf="%SystemRoot%\Temp\ddf""
|
|
%nul% del /q /f %ddf%
|
|
echo/.New Cabinet>%ddf%
|
|
echo/.set Cabinet=ON>>%ddf%
|
|
echo/.set CabinetFileCountThreshold=0;>>%ddf%
|
|
echo/.set Compress=ON>>%ddf%
|
|
echo/.set CompressionType=LZX>>%ddf%
|
|
echo/.set CompressionLevel=7;>>%ddf%
|
|
echo/.set CompressionMemory=21;>>%ddf%
|
|
echo/.set FolderFileCountThreshold=0;>>%ddf%
|
|
echo/.set FolderSizeThreshold=0;>>%ddf%
|
|
echo/.set GenerateInf=OFF>>%ddf%
|
|
echo/.set InfFileName=nul>>%ddf%
|
|
echo/.set MaxCabinetSize=0;>>%ddf%
|
|
echo/.set MaxDiskFileCount=0;>>%ddf%
|
|
echo/.set MaxDiskSize=0;>>%ddf%
|
|
echo/.set MaxErrors=1;>>%ddf%
|
|
echo/.set RptFileName=nul>>%ddf%
|
|
echo/.set UniqueFiles=ON>>%ddf%
|
|
for /f "tokens=* delims=" %%D in ('dir /a:-D/b/s "%SystemRoot%\logs\%1"') do (
|
|
echo/"%%~fD" /inf=no;>>%ddf%
|
|
)
|
|
makecab /F %ddf% /D DiskDirectory1="" /D CabinetNameTemplate="!desktop!\AT_Logs\%2_%_time%.cab"
|
|
del /q /f %ddf%
|
|
exit /b
|
|
|
|
::========================================================================================================================================
|
|
|
|
:: This code checks for invalid registry keys in HKLM\SYSTEM\WPA. This issue may appear even on healthy systems
|
|
|
|
:wpatest:
|
|
$wpaKey = [Microsoft.Win32.RegistryKey]::OpenBaseKey('LocalMachine', 'Registry64').OpenSubKey("SYSTEM\\WPA")
|
|
$count = $wpaKey.SubKeyCount
|
|
|
|
$osVersion = [System.Environment]::OSVersion.Version
|
|
$minBuildNumber = 14393
|
|
|
|
if ($osVersion.Build -ge $minBuildNumber) {
|
|
$subkeyHashTable = @{}
|
|
foreach ($subkeyName in $wpaKey.GetSubKeyNames()) {
|
|
$keyNumber = $subkeyName -replace '.*-', ''
|
|
$subkeyHashTable[$keyNumber] = $true
|
|
}
|
|
for ($i=1; $i -le $count; $i++) {
|
|
if (-not $subkeyHashTable.ContainsKey("$i")) {
|
|
Write-Host "Total Keys $count. Error Found- $i key does not exist"
|
|
$wpaKey.Close()
|
|
exit
|
|
}
|
|
}
|
|
}
|
|
$wpaKey.GetSubKeyNames() | ForEach-Object {
|
|
$subkey = $wpaKey.OpenSubKey($_)
|
|
$p = $subkey.GetValueNames()
|
|
if (($p | Where-Object { $subkey.GetValueKind($_) -eq [Microsoft.Win32.RegistryValueKind]::Binary }).Count -eq 0) {
|
|
Write-Host "Total Keys $count. Error Found- Binary Data is corrupt"
|
|
$wpaKey.Close()
|
|
exit
|
|
}
|
|
}
|
|
$count
|
|
$wpaKey.Close()
|
|
:wpatest:
|
|
|
|
::========================================================================================================================================
|
|
|
|
:checkperms
|
|
|
|
set permerror=
|
|
if not exist "%tokenstore%\" set permerror=1
|
|
|
|
for %%# in (
|
|
"%tokenstore%"
|
|
"HKLM:\SYSTEM\WPA"
|
|
"HKLM:\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SoftwareProtectionPlatform"
|
|
) do if not defined permerror (
|
|
%psc% "$acl = Get-Acl '%%#'; if ($acl.Access.Where{ $_.IdentityReference -eq 'NT SERVICE\sppsvc' -and $_.AccessControlType -eq 'Deny' -or $acl.Access.IdentityReference -notcontains 'NT SERVICE\sppsvc'}) {Exit 2}" %nul%
|
|
if !errorlevel!==2 set permerror=1
|
|
)
|
|
exit /b
|
|
|
|
::========================================================================================================================================
|
|
|
|
:scandat
|
|
|
|
set token=
|
|
for %%# in (
|
|
%Systemdrive%\Windows\System32\spp\store_test\2.0\
|
|
%Systemdrive%\Windows\System32\spp\store\
|
|
%Systemdrive%\Windows\System32\spp\store\2.0\
|
|
%Systemdrive%\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\
|
|
) do (
|
|
|
|
if %1==check (
|
|
if exist %%#tokens.dat set token=%%#tokens.dat
|
|
)
|
|
|
|
if %1==delete (
|
|
if exist %%# (
|
|
%nul% dir /a-d /s "%%#*.dat" && (
|
|
attrib -r -s -h "%%#*.dat" /S
|
|
del /S /F /Q "%%#*.dat"
|
|
)
|
|
)
|
|
)
|
|
)
|
|
exit /b
|
|
|
|
:scandatospp
|
|
|
|
set token=
|
|
for %%# in (
|
|
%ProgramData%\Microsoft\OfficeSoftwareProtectionPlatform\
|
|
) do (
|
|
|
|
if %1==check (
|
|
if exist %%#tokens.dat set token=%%#tokens.dat
|
|
)
|
|
|
|
if %1==delete (
|
|
if exist %%# (
|
|
%nul% dir /a-d /s "%%#*.dat" && (
|
|
attrib -r -s -h "%%#*.dat" /S
|
|
del /S /F /Q "%%#*.dat"
|
|
)
|
|
)
|
|
)
|
|
)
|
|
exit /b
|
|
|
|
::========================================================================================================================================
|
|
|
|
:regownstart
|
|
|
|
%psc% "$f=[io.file]::ReadAllText('!_batp!') -split ':regown\:.*';iex ($f[1]);"
|
|
exit /b
|
|
|
|
:: Below code takes ownership of a volatile registry key and deletes it
|
|
:: HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ClipSVC\Volatile\PersistedSystemState
|
|
|
|
:regown:
|
|
$AssemblyBuilder = [AppDomain]::CurrentDomain.DefineDynamicAssembly(4, 1)
|
|
$ModuleBuilder = $AssemblyBuilder.DefineDynamicModule(2, $False)
|
|
$TypeBuilder = $ModuleBuilder.DefineType(0)
|
|
|
|
$TypeBuilder.DefinePInvokeMethod('RtlAdjustPrivilege', 'ntdll.dll', 'Public, Static', 1, [int], @([int], [bool], [bool], [bool].MakeByRefType()), 1, 3) | Out-Null
|
|
$TypeBuilder.CreateType()::RtlAdjustPrivilege(9, $true, $false, [ref]$false) | Out-Null
|
|
|
|
$SID = New-Object System.Security.Principal.SecurityIdentifier('S-1-5-32-544')
|
|
$IDN = ($SID.Translate([System.Security.Principal.NTAccount])).Value
|
|
$Admin = New-Object System.Security.Principal.NTAccount($IDN)
|
|
|
|
$path = 'SOFTWARE\Microsoft\Windows NT\CurrentVersion\ClipSVC\Volatile\PersistedSystemState'
|
|
$key = [Microsoft.Win32.RegistryKey]::OpenBaseKey('LocalMachine', 'Registry64').OpenSubKey($path, 'ReadWriteSubTree', 'takeownership')
|
|
|
|
$acl = $key.GetAccessControl()
|
|
$acl.SetOwner($Admin)
|
|
$key.SetAccessControl($acl)
|
|
|
|
$rule = New-Object System.Security.AccessControl.RegistryAccessRule($Admin,"FullControl","Allow")
|
|
$acl.SetAccessRule($rule)
|
|
$key.SetAccessControl($acl)
|
|
:regown:
|
|
|
|
::========================================================================================================================================
|
|
|
|
:_color
|
|
|
|
if %_NCS% EQU 1 (
|
|
echo %esc%[%~1%~2%esc%[0m
|
|
) else (
|
|
call :batcol %~1 "%~2"
|
|
)
|
|
exit /b
|
|
|
|
:_color2
|
|
|
|
if %_NCS% EQU 1 (
|
|
echo %esc%[%~1%~2%esc%[%~3%~4%esc%[0m
|
|
) else (
|
|
call :batcol %~1 "%~2" %~3 "%~4"
|
|
)
|
|
exit /b
|
|
|
|
::=======================================
|
|
|
|
:: Colored text with pure batch method
|
|
:: Thanks to @dbenham and @jeb
|
|
:: stackoverflow.com/a/10407642
|
|
|
|
:batcol
|
|
|
|
pushd %_coltemp%
|
|
if not exist "'" (<nul >"'" set /p "=.")
|
|
setlocal
|
|
set "s=%~2"
|
|
set "t=%~4"
|
|
call :_batcol %1 s %3 t
|
|
del /f /q "'"
|
|
del /f /q "`.txt"
|
|
popd
|
|
exit /b
|
|
|
|
:_batcol
|
|
|
|
setlocal EnableDelayedExpansion
|
|
set "s=!%~2!"
|
|
set "t=!%~4!"
|
|
for /f delims^=^ eol^= %%i in ("!s!") do (
|
|
if "!" equ "" setlocal DisableDelayedExpansion
|
|
>`.txt (echo %%i\..\')
|
|
findstr /a:%~1 /f:`.txt "."
|
|
<nul set /p "=%_BS%%_BS%%_BS%%_BS%%_BS%%_BS%%_BS%"
|
|
)
|
|
if "%~4"=="" echo(&exit /b
|
|
setlocal EnableDelayedExpansion
|
|
for /f delims^=^ eol^= %%i in ("!t!") do (
|
|
if "!" equ "" setlocal DisableDelayedExpansion
|
|
>`.txt (echo %%i\..\')
|
|
findstr /a:%~3 /f:`.txt "."
|
|
<nul set /p "=%_BS%%_BS%%_BS%%_BS%%_BS%%_BS%%_BS%"
|
|
)
|
|
echo(
|
|
exit /b
|
|
|
|
::=======================================
|
|
|
|
:_colorprep
|
|
|
|
if %_NCS% EQU 1 (
|
|
for /F %%a in ('echo prompt $E ^| cmd') do set "esc=%%a"
|
|
|
|
set "Red="41;97m""
|
|
set "Gray="100;97m""
|
|
set "Black="30m""
|
|
set "Green="42;97m""
|
|
set "Blue="44;97m""
|
|
set "Yellow="43;97m""
|
|
set "Magenta="45;97m""
|
|
|
|
set "_Red="40;91m""
|
|
set "_Green="40;92m""
|
|
set "_Blue="40;94m""
|
|
set "_White="40;37m""
|
|
set "_Yellow="40;93m""
|
|
|
|
exit /b
|
|
)
|
|
|
|
for /f %%A in ('"prompt $H&for %%B in (1) do rem"') do set "_BS=%%A %%A"
|
|
set "_coltemp=%SystemRoot%\Temp"
|
|
|
|
set "Red="CF""
|
|
set "Gray="8F""
|
|
set "Black="00""
|
|
set "Green="2F""
|
|
set "Blue="1F""
|
|
set "Yellow="6F""
|
|
set "Magenta="5F""
|
|
|
|
set "_Red="0C""
|
|
set "_Green="0A""
|
|
set "_Blue="09""
|
|
set "_White="07""
|
|
set "_Yellow="0E""
|
|
|
|
exit /b
|
|
|
|
::========================================================================================================================================
|
|
:: Leave empty line below
|