Not sure if this is possible.
Can someone generate a report like the one here: https://www.lansweeper.com/forum/yaf_postst14787_Ransomware--MS17-010-Windows-computers-that-are-potentially-vulnerable.aspx#post50430
However, I would also like it to exclude machines that we have manually mitigated according to: https://support.microsoft.com/en-us/help/2696547/how-to-enable-and-disable-smbv1,-smbv2,-and-smbv3-in-windows-vista,-windows-server-2008,-windows-7,-windows-server-2008-r2,-windows-8,-and-windows-server-2012
Specifically, also exclude machines if the following registry key is set:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanmanServer\Parameters
Registry entry: SMB1
REG_DWORD: 0 = Disabled
Thanks.
