# WK-Checklist

## Init ##
$wd = $(Split-Path $MyInvocation.MyCommand.Path)
pushd "$wd"
. .\init.ps1
clear
$host.UI.RawUI.WindowTitle = "WK Checklist Tool"
$logpath = "$WKPath\Info\$date"
md "$logpath" 2>&1 | out-null
$log = "$logpath\Checklist.log"
$bin = (Get-Item $wd).Parent.FullName
$diag_dest = "/srv/Diagnostics"
$diag_server = "10.0.0.10"
$diag_user = "wkdiag"

# OS Check
. .\os_check.ps1

# Set Service Order
while ($service_order -notmatch '^\d+') {
    $service_order = read-host "Please enter the service order number"
    if ($service_order -notmatch '^\d+') {
        write-host "ERROR: Invalid SO`r`n" -foreground "red"
    }
}
clear
out-file -filepath "$logpath\TicketNumber" -inputobject $service_order -append
wk-write "Starting final checklist for Ticket #$service_order" "$log"
wk-write "" "$log"

## Cleanup ##
wk-write "Pre-Checklist Cleanup" "$log"

# Uninstall AdwCleaner
if (test-path "$systemdrive\AdwCleaner") {
	try {
		wk-write "* Uninstalling AdwCleaner" "$log"
		move-item "$systemdrive\AdwCleaner\*log" "$WKPath\Info\"
		move-item "$systemdrive\AdwCleaner\*txt" "$WKPath\Info\"
		if (test-path "$systemdrive\AdwCleaner\Quarantine") {
			move-item "$systemdrive\AdwCleaner\Quarantine" "$WKPath\Quarantine\AdwCleaner"
		}
		remove-item "$systemdrive\AdwCleaner" -recurse
    } catch {
		wk-error "  Failed to uninstall AdwCleaner; please remove manually." "$log"
    }
}

# Uninstall Autoruns
if (test-path "HKCU:\Software\Sysinternals\AutoRuns") {
    wk-write "* Uninstalling Autoruns" "$log"
    Remove-Item -Path HKCU:\Software\Sysinternals\AutoRuns -Recurse 2>&1 | out-null
    if ((Get-ChildItem -Path HKCU:\Software\Sysinternals 2> out-null | Measure-Object).count -eq 0) {
        Remove-Item -Path HKCU:\Software\Sysinternals 2>&1 | out-null
    }
}

# Move ComboFix Logs
if (test-path "$systemdrive\ComboFix") {
    wk-write "* Moving ComboFix leftovers" "$log"
    wk-warn "  TODO" "$log"
}

# Uninstall ESET
if (test-path "$programfiles86\ESET\ESET Online Scanner") {
    wk-write "* Uninstalling ESET" "$log"
    start -wait "$programfiles86\ESET\ESET Online Scanner\OnlineScannerUninstaller.exe" -argumentlist "/s"
    rm -path "$programfiles86\ESET\ESET Online Scanner" -recurse 2>&1 | out-null
    if ((gci -path "$programfiles86\ESET" 2> out-null | Measure-Object).count -eq 0) {
        rm -path "$programfiles86\ESET" 2>&1 | out-null
    }
}

# Move JRT logs & backups
if (test-path "$userprofile\Desktop\JRT*") {
    wk-write "* Cleaning up JRT leftovers" "$log"
    wk-warn "  TODO" "$log"
}

# Uninstall MBAM
if (test-path "$programfiles86\Malwarebytes") {
    wk-write "* Uninstalling MBAM" "$log"
    wk-warn "  TODO" "$log"
}

# Move RKill logs & backups
if (test-path "$userprofile\Desktop\rkill*") {
    wk-write "* Cleaning up RKill leftovers" "$log"
    wk-warn "  TODO" "$log"
}

# Uninstall SUPERAntiSpyware
# It is always in programfiles (not x86) ??
$sas_force_remove = $false
if (test-path "$programfiles\SUPERAntiSpyware") {
    if (test-path "$programfiles\SUPERAntiSpyware\Uninstall.exe") {
        wk-write "* Uninstalling SUPERAntiSpyware" "$log"
        start -wait "$programfiles\SUPERAntiSpyware\Uninstall.exe"
    } else {
        wk-error "SUPERAntiSpyware install is broken." "$log"
        $sas_force_remove = $true
    }
}

## Block Windows 10 ##
if ($win_version -notmatch '^10$') {
    # Kill GWX
    taskkill /f /im gwx.exe
    
    # Block upgrade via registry
    New-Item -Path "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\OSUpgrade" -Force 2>&1 | out-null
    Set-ItemProperty -Path "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\OSUpgrade" -Name "AllowOSUpgrade" -Value 0 -Type "DWord" | out-null
    Set-ItemProperty -Path "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\OSUpgrade" -Name "ReservationsAllowed" -Value 0 -Type "DWord" | out-null
    New-Item -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\Gwx" -Force 2>&1 | out-null
    Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\Gwx" -Name "DisableGwx" -Value 1 -Type "DWord" | out-null
    New-Item -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate" -Force 2>&1 | out-null
    Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate" -Name "DisableOSUpgrade" -Value 1 -Type "DWord" | out-null
}

## Summary ##
wk-write "" "$log"
wk-write "Starting SW Checklist" "$log"
wk-write "" "$log"

# Backup Registry
if (!(test-path "$logpath\Registry")) {
    wk-write "* Backing up registry" "$log"
    start -wait "$bin\Erunt\ERUNT.EXE" -argumentlist @("$logpath\Registry", "sysreg", "curuser", "otherusers", "/noprogresswindow") -workingdirectory "$bin\Erunt"
}

# AIDA64
if (!(test-path "$logpath\aida-keys.txt")) {
    wk-write "* Running AIDA64 (Product Keys)" "$log"
    start -wait "$bin\AIDA64\aida64.exe" -argumentlist @("/R", "$logpath\aida-keys.txt", "/CUSTOM", "$bin\AIDA64\licenses.rpf", "/TEXT", "/SILENT", "/SAFEST") -workingdirectory "$bin\AIDA64"
}

if (!(test-path "$logpath\aida-installed_programs.txt")) {
    wk-write "* Running AIDA64 (SW listing)" "$log"
    start -wait "$bin\AIDA64\aida64.exe" -argumentlist @("/R", "$logpath\aida-installed_programs.txt", "/CUSTOM", "$bin\AIDA64\installed_programs.rpf", "/TEXT", "/SILENT", "/SAFEST") -workingdirectory "$bin\AIDA64"
}

if (!(test-path "$logpath\aida64.htm")) {
    wk-write "* Running AIDA64 (Full listing) in background" "$log"
    start "$bin\AIDA64\aida64.exe" -argumentlist @("/R", "$logpath\aida64.html", "/CUSTOM", "$bin\AIDA64\full.rpf", "/HTML", "/SILENT") -workingdirectory "$bin\AIDA64"
}

# Product Keys
## Extract
md "$bin\ProduKey" 2>&1 | out-null
$sz_args = @(
    "x",
    ('"{0}\ProduKey.7z"' -f $bin),
    ('-o"{0}\ProduKey"' -f $bin),
    "-aos",
    "-pAbracadabra")
start "$bin\7-Zip\7z.exe" -argumentlist $sz_args -wait -windowstyle minimized
sleep -s 1

## Run
if (!(test-path "$logpath\keys.txt")) {
    wk-write "* Saving Product Keys" "$log"
    ri "$bin\ProduKey\*.cfg"
    if ($arch -eq 64) {
        $prog = "$bin\ProduKey\ProduKey64.exe"
    } else {
        $prog = "$bin\ProduKey\ProduKey.exe"
    }
    start -wait $prog -argumentlist @("/nosavereg", "/stext", "$logpath\keys.txt") -workingdirectory "$bin\ProduKey"
}
wk-write "" "$log"

# User Data
wk-write "==== User Data ====" "$log"
& "$wd\user_data.ps1" "$log"
wk-write "" "$log"

# OS Info
wk-write "==== Operating System ====" "$log"
wk-write "  $os_name x$arch" "$log"
wk-write "$win_act" "$log"
if ($win_act -notmatch "permanent") {slui}
wk-write "" "$log"

# Set Timezone and sync clock
wk-write "==== Clock ====" "$log"
start "tzutil" -argumentlist @("/s", '"Pacific Standard Time"') -nonewwindow -redirectstandardoutput out-null
stop-service -name "w32time" 2>&1 | out-null
start "w32tm" -argumentlist @("/config", "/syncfromflags:manual", '/manualpeerlist:"us.pool.ntp.org time.nist.gov time.windows.com"') -nonewwindow -redirectstandardoutput out-null
start-service -name "w32time" 2>&1 | out-null
start "w32tm" -argumentlist "/resync" -nonewwindow -redirectstandardoutput out-null
# gross assumption that tz=PST (should've been set earlier)
wk-write $(get-date -uformat "  %a %Y-%m-%d %H:%m (PST/PDT)") "$log"
wk-write "" "$log"

###  DISABLED FOR NOW ###
## Reset power plans
#wk-write "==== Reset Power Plans ====" "$log"
## Export current power plans
#$pow_backup_path = "$WKPath\Backups\$date\Power Plans"
#md "$pow_backup_path" > $null 2>&1 | out-null
#$old_power_plans = @()
#foreach ($plan in (powercfg /L)) {
#    if ($plan -imatch '^Power Scheme.*') {
#        $guid = $plan -replace 'Power Scheme GUID:\s+([0-9a-f\-]+).*', '$1'
#        $name = $plan -replace 'Power Scheme GUID:\s+[0-9a-f\-]+\s+\(([^\)]+)\).*', '$1'
#        $set = ($plan -imatch '.*\*$')
#        $old_power_plans += @{GUID = $guid; Name = $name; Set = $set}
#        if (!(test-path "$pow_backup_path\$name.pow")) {
#            powercfg /export "$pow_backup_path\$name.pow" $guid
#        }
#    }
#}
#
#start "powercfg.exe" -argumentlist "-restoredefaultschemes" -nonewwindow -redirectstandardoutput out-null
#wk-write "  All power plans reset to defaults" "$log"
## TODO: Re-add and reset SSD plan(s)
#wk-warn "    If the system has a SSD please verify the correct plan has been selected" "$log"
#wk-write "" "$log"
###  DISABLED FOR NOW ###

# Free Space
wk-write "==== Free Space ====" "$log"
& "$wd\free_space.ps1" "$log"
wk-write "" "$log"

# RAM
wk-write "==== RAM ====" "$log"
& "$wd\installed_ram.ps1" "$log"
wk-write "" "$log"

# Battery Check
wk-write "==== Battery Check ====" "$log"
& "$wd\check_battery.ps1" "$log"
wk-write "" "$log"

## Launch Extra Tools ##
# HWMonitor
if ($arch -eq 64) {
    $prog = "$bin\HWMonitor\HWMonitor64.exe"
} else {
    $prog = "$bin\HWMonitor\HWMonitor.exe"
}
start $prog

# XMPlay
start "$bin\..\Misc\XMPlay.cmd"

## Upload info ##
write-host "Uploading info to NAS..."

# Write batch
$batch = "lcd `"{0}`"`r`n" -f $WKPath
$batch += "cd `"{0}`"`r`n" -f $diag_dest
$batch += "put -r Info `"{0}`"`r`n" -f $service_order
out-file -encoding "ASCII" -filepath "$wd\psftp_batch" -inputobject $batch

# Upload files
$psftp_args = @(
    "-noagent",
    "-i", "$bin\PuTTY\Wizard-Kit.ppk",
    "$diag_user@$diag_server",
    "-b", "$wd\psftp_batch")
start "$bin\PuTTY\PSFTP.exe" -argumentlist $psftp_args -wait -windowstyle minimized

## Done ##
popd
pause "Press Enter to review drivers and updates..."

# Launch post progs
start devmgmt.msc
if ($win_version -eq 10) {
    start ms-settings:windowsupdate
} else {
    start wuapp
}

# Launch SAS Removal Tool (if necessary)
if ($sas_force_remove) {
	pushd "$bin\_Removal Tools"
    if ($arch -eq 64) {
        $prog = "SASUNINST64.exe"
    } else {
        $prog = "SASUNINST.exe"
    }
    start $prog
	popd
}

# Open log
$notepad2 = "$bin\Notepad2\Notepad2-Mod.exe"
if (test-path "$notepad2") {
    start "$notepad2" -argumentlist $log
} else {
    start "notepad" -argumentlist $log
}