Checking raw ThermalZoneInfo performance counters with WMI

ayoubfaouzi · Feb 27, 2024 · 34d4a2e · 34d4a2e
1 parent 1f7c4a6
commit 34d4a2e
Show file tree

Hide file tree

Showing 3 changed files with 16 additions and 1 deletion.
diff --git a/al-khaser/Al-khaser.cpp b/al-khaser/Al-khaser.cpp
@@ -214,6 +214,7 @@ int main(int argc, char* argv[])
 		exec_check(&registry_services_disk_enum, TEXT("Checking Services\\Disk\\Enum entries for VM strings "));
 		exec_check(&registry_disk_enum, TEXT("Checking Enum\\IDE and Enum\\SCSI entries for VM strings "));
 		exec_check(&number_SMBIOS_tables, TEXT("Checking SMBIOS tables  "));
+		exec_check(&perf_raw_data_counters_thermalzoneinfo_wmi, TEXT("Checking raw ThermalZoneInfo performance counters with WMI "));
 	}
 
 	/* VirtualBox Detection */

diff --git a/al-khaser/AntiVM/Generic.cpp b/al-khaser/AntiVM/Generic.cpp
@@ -2011,4 +2011,17 @@ BOOL number_SMBIOS_tables()
 		free(smbios);
 	}
 	return result;
+}
+
+/*
+Check Win32_PerfRawData_Counters_ThermalZoneInformation for entries
+*/
+BOOL perf_raw_data_counters_thermalzoneinfo_wmi()
+{
+	int count = wmi_query_count(_T("SELECT * FROM Win32_PerfRawData_Counters_ThermalZoneInformation"));
+	if (count == 0)
+	{
+		return TRUE;
+	}
+	return FALSE;
 }
diff --git a/al-khaser/AntiVM/Generic.h b/al-khaser/AntiVM/Generic.h
@@ -49,4 +49,5 @@ BOOL cim_voltagesensor_wmi();
 BOOL pirated_windows();
 BOOL registry_services_disk_enum();
 BOOL registry_disk_enum();
-BOOL number_SMBIOS_tables();
+BOOL number_SMBIOS_tables();
+BOOL perf_raw_data_counters_thermalzoneinfo_wmi();