WGA: better, but still not good enough

Home

WinFind

Reviews

Polls

Contact

Past issues

Upgrade

Prefs

Unsubscribe

Windows Secrets Newsletter • Issue 132 • 2007-11-29 • Circulation: over 275,000

Contents
TOP STORY: WGA: better, but still not good enough
KNOWN ISSUES: Save energy without sacrificing after-hours tasks
WACKY WEB WEEK: How Disney really feels about Christmas
PC TUNE-UP: Own any PC in 60 seconds or less
PATCH WATCH: MS's update icons confuse Windows patchers
YOUR SUBSCRIPTION: How to change your address or unsubscribe

For links to every topic in this issue, scroll down to the Index

ADS

Up-to-date drivers made easy

Up-to-date drivers made easy
Did you know that keeping your computer's drivers current will enhance the functionality and stability of your system? PC Pitstop's Driver Alert makes this easy by matching the latest drivers to your system with one free scan. Scan now!
www.driveralert.com

Backup your data with ZipBackup

Backup your data with ZipBackup
Finally, a backup program that's easy to use. ZipBackup's Wizard makes backups a snap for beginners. Filtering, scheduling, and disk spanning make it a powerful tool for experts. For a limited time, Windows Secrets readers receive 25% off.
www.zipbackup.com

Outlook super productivity in 5 minutes

Outlook super productivity in 5 minutes
E-MAIL MERGE: Send personalized greetings, newsletters, etc., using Outlook. Uses Outlook Contacts, Excel, Access... SEND GUARD: Warns you if you forget attachments/subject, use Reply instead of Reply All (or vice versa), use the wrong e-mail account, etc.
www.Addins4Outlook.com

See your ad here

TOP STORY

WGA: better, but still not good enough

Scott Dunn

By Scott Dunn

When it was first released, Microsoft's Windows Genuine Advantage (WGA) was widely criticized for spyware-like qualities and numerous false positives.

Since then, Microsoft has given its anticopying program a number of changes, but they're not enough to give this tool a positive reputation.

The way that WGA works today

Microsoft bills Windows Genuine Advantage as a way to let customers avoid the security risks of malware-laden counterfeits. WGA is supposed to detect whether a user's copy of Windows is counterfeit and, if it is, tell the user how to obtain a genuine copy.

WGA affects users of both Vista and XP. The impact is potentially greater on Vista, where a copy found not to be genuine has certain features disabled, including the Aero interface, Windows ReadyBoost, and portions of Windows Defender. WGA is unavoidable in Vista, since the technology is built into Windows itself.

In Windows XP, failure to be validated by WGA means users cannot download some content (such as optional updates) from Microsoft. In addition, XP users may be treated to alerts complaining that their version of Windows is not genuine, and advising them how to correct the situation. However, unlike Vista users, XP customers may be able to avoid WGA by watching what they install on their systems.

Windows Genuine Advantage has two components, validation (which checks for an authentic licensed version) and notifications (the software that alerts you if you fail validation). In XP, the two are separate downloads.

To learn if your XP system has either of these components, do the following:

Step 1. Start Windows Explorer and choose Tools, Options.

Step 2. Click the View tab and select Show hidden files and folders. Then uncheck Hide protected operating system files (Recommended). Click Yes to confirm, and then click OK.

Step 3. To learn if your system has the WGA Validation Tool, search for the file LegitCheckControl.dll in Windows' System32 folder. If you find it, the Validation Tool is already on your system.

Step 4. Finally, to learn if your system has the WGA Notifications software, search for WGATray.exe or WgaLogon.dll. These files indicate the presence of the Notifications utility.

If you already have these on your system but haven't experienced any problems, you probably don't need to take any further steps. Some Web sites tell you how to remove the Notifications software (the more annoying of the two components) or provide a free tool for deleting it. Others provide hacker techniques for removing the Validation Tool. I haven't tested these enough to make an endorsement, so use them at your own risk.

If you don't have the Validation or Notifications tools on your system, you can avoid them by avoiding Windows Update, Microsoft Update, and Microsoft's download Web site.

You can still get updates without WGA by using the Automatic Updates control panel (more on that later). But as my stories in the Sept. 20 and Sept. 27 issues have shown, allowing Automatic Updates to install files can create its own problems. (A silent update that began in July 2007 had the effect of preventing Windows XP from installing security patches after XP's "repair" function had been used.)

To have full control over your update process without allowing WGA to be installed, the Software Patch site lets you pick and choose the updates you need. I reviewed this process in the Oct. 4 newsletter.

Even with the Software Patch approach, you may need to exercise caution. High-priority updates do not require WGA to be installed, but any downloads from the "Optional updates" section may include WGA components as part of the installation process. Be sure to read the installer screens carefully in each case.

What's new with WGA?

Microsoft has attempted to make WGA less odious by changing some of the features that initially brought a great deal of criticism. For example, early versions of WGA sent information from users' computers to Microsoft every day. This was later changed to weekly. These regular reports were supposed to have stopped by the end of 2006, according to a Microsoft statement.

But that doesn't mean data is never sent to the home office. WGA sends Microsoft information about your computer hardware every time it does a validation check (for example, when you attempt to download certain updates). Microsoft denies that any personal information is being collected.

But earlier this year, Heise Security reported that WGA sends encrypted telemetry back to Microsoft in some cases — for example, when a user cancels a WGA installation. Microsoft responded on the WGA blog, detailing what information is sent and when. The post was less than reassuring to writers like Robert Moir, who commented that Microsoft is never going to restore trust as long as it continues to behave in a suspicious manner.

Another complaint about earlier versions of WGA was that Microsoft installed it without adequate disclosure. For example, editorial director Brian Livingston reported on June 15, 2006, that WGA was installed silently via Automatic Updates on system set to update automatically, as though WGA were a critical security patch.

A recent Knowledge Base article, number 892130, implies that Automatic Updates won't install WGA validation, saying, "The Automatic Updates feature is not affected by the WGA validation check. Therefore, you can use the Automatic Updates feature to make sure that you receive critical Windows updates."

My own tests appear to confirm this. Updating a clean install of Windows XP SP2 using Automatic Updates did not result in any detectable component of WGA being added to my test machine.

Unfortunately, the sites known as Microsoft Update and Windows Update still contain the same misleading language for manual updating that was reported by David Berlind of ZDnet over one year ago. On both sites, an offered download claims that it will update some components of Windows Update. It isn't mentioned that WGA will be installed unless you click a button labeled Details. Only then is it apparent that the promised "enhancement" is actually the WGA validation tool.

WGA problems persist for Windows users

Unfortunately, despite some positive changes in WGA, problems continue to crop up:

• In August 2007, a problem with Microsoft's WGA servers mistakenly labeled thousands of computers as "nongenuine," restricting some Vista capabilities for a time. This was reported by Susan Bradley in the paid version of the Sept. 6 Windows Secrets Newsletter.

• A number of popular software products, including PC Tools Spyware Doctor and Trend Micro Internet Security, have caused WGA to report "nongenuine status" or prevent activation, as reported on a Microsoft online forum. Users have had to download updates for the implicated products in order to correct the problem.

• Trial versions of some Office 2007 products have also been known to flag Windows as not genuine. According to a Microsoft spokesperson, this problem has been corrected for all trial versions of Office as of Jan. 23 of this year.

• Microsoft claims that "false positives" (legitimate Windows systems being seen as counterfeit) are extremely rare. But as Guardian journalist Jack Schofield points out, even if that number is as low as Microsoft's estimate of 1%, that could still affect around 5 million users.

• Upgrading or making multiple changes to your computer hardware can cause a system to fail WGA validation. The Web site APC pointed out just a month ago that installing the Intel Matrix Storage Manager application and changing a video card was enough to knock out Vista's activation. Users can correct the situation by phoning Microsoft, but it's an annoyance nonetheless.

Despite Microsoft's claims to the contrary, WGA offers few if any benefits to the average user. If you know you've bought your copy of Windows from a legitimate source and have no reason to suspect piracy, WGA does little to help you. On the contrary, WGA could conceivably become a headache if you upgrade your computer hardware or if Microsoft experiences more problems with their WGA servers.

The software giant needs to find better solutions to the problem of piracy, rather than make the legitimate customer pay the price for problems facing Microsoft itself.

Have a tip about Windows? Readers receive a gift certificate for a book, CD, or DVD of their choice for sending tips we print. Send us your tips via the Windows Secrets contact page.

Scott Dunn is associate editor of the Windows Secrets Newsletter. He has been a contributing editor of PC World since 1992 and currently writes for the magazine's Here's How section.

ADS

Get your product seen by 275,000 readers

Get your product seen by 275,000 readers
Does your company offer a product or service? Now you can place an ad in the Windows Secrets Newsletter and be seen by more than 275,000 active buyers of PC hardware and software. Bid as much or as little as you like to get the ideal ad placement.
www.WindowsSecrets.com

See your ad here

KNOWN ISSUES

Save energy without sacrificing after-hours tasks

By Scott Dunn

In the Nov. 15 issue, I recommended putting your system on standby when you're not at the keyboard. But how can your system do all of your automated tasks if it's asleep?

With a few well-chosen strategies (including the right BIOS or some helpful freeware), you can have your disk-maintenance cake and eat your energy savings, too.

Run automated tasks on a sleeping system

Regarding my recommendation to use Standby and Sleep modes to save power, Lynn Stearns raises an important question:

"My question is what about all those programs that run after hours, like Windows Update, Diskeeper, antivirus updates and most backup programs. Don't they need to have a powered up computer?"

It is true that a system on standby will be unable to run certain tasks that would be possible in full-power mode. But you may be able to work around most of these limitations and still save some electricity.

If you use the Automatic setting found in the Automatic Updates (XP) or Windows Update (Vista) control panels, you can use day and time settings to choose a time when your computer is likely to be fully powered.

For other applications, you can use Windows' task scheduling tool to program when these chores occur. This utility can also wake the system to run tasks, but only if your computer's BIOS supports Advanced Power Management (APM) version 1.2. You may need to consult your hardware manual or the manufacturer's Web site to find out what version you have.

To wake your system automatically for an existing scheduled task:

Step 1. In XP, click Start, All Programs, Accessories, System Tools, Scheduled Tasks. In Vista, select Task Scheduler.

Step 2. (Vista only.) Select Task Scheduler Library in the left pane.

Step 3. Double-click a task you've previously set to run after hours.

Step 4. In XP, click the Settings tab. In Vista, click the Conditions tab.

Step 5. Check Wake the computer to run this task. Click OK.

If your BIOS doesn't support APM 1.2, check out the tip below.

Run tasks before your system sleeps

Reader Dieter Schack has found another way to use Suspend mode and also have your routine tasks run:

"Another exellent program for shutting down or suspending Windows (and more) is ShowStopper by Karen Kenworthy. Personally, I think it is one of the best and easiest 'shutdown' programs available for Windows."

Although this program arguably takes as many clicks to enter Standby mode as using the Start menu, it can create shortcuts you can launch with a quick double-click any time you want to go on standby, reboot, log off, shut down, and more.

More importantly, you can set up custom groups of tasks that ShowStopper will launch before the desired shutdown or standby action.

The only catch is that you must use tasks that automatically exit when finished; otherwise, ShowStopper waits endlessly for them to quit before proceeding. Fortunately, this is not a serious problem with many backup and disk-checking utilities, which can be set to terminate at the end of their chores.

Is CO2 Saver spyware?

The Nov. 15 top story also recommended a freeware product called CO2 Saver. But a couple of readers expressed concern about the product's license agreement. For example, Art Pete cancelled the installation when he read the following passages in CO2 Saver's EULA:

"4. Third Party Information and Services. The Software may be used to access certain third party websites, software, applications, and other materials (collectively, "Third Party Materials"). ...

"6. Data Collection and Privacy. The Software may collect, store, and periodically send information back to Licensor or third party servers. ...

"7. Support and Software Updates. Licensor may elect to update the Software from time to time in its sole discretion. Licensor may also elect to discontinue, disable, remove, or otherwise terminate your use of the Software, including via automatic update. ... You may not block, limit, or otherwise refuse any such automatic update, even if such update limits, reduces, or removes some or all of the existing functionality of the Software."

For what it's worth, I personally scanned a PC using CO2 Saver, using a recently updated version of Webroot's Spy Sweeper, which found no indication of spyware.

I also installed ZoneAlarm's free firewall to see if CO2 Saver was attempting to "phone home." As long as I didn't use the search toolbar, the product did not attempt to access the Internet. The search function does, however, access the Web via CO2 Saver's own site. Consequently, it's possible that information from your search query is being saved on CO2 Saver's servers before being redirected to your designated search site.

This suggests that some of the EULA passages quoted above refer to the toolbar's search feature. But the EULA language seems extreme, and goes beyond that found in the Google privacy policy, for example. If this bothers you, you can either use a firewall to block CO2 Saver's Web access, don't use the search feature, or uninstall the program entirely.

Readers Stearns, Schack, and Pete will each receive a gift certificate for a book, CD, or DVD of their choice for sending tips we printed. Send us your tips via the Windows Secrets contact page.

TELL A FRIEND

How you can share this information

We love it when you send your friends links to our articles. But please don't forward your copy of our e-mail newsletter to people, which subjects us to spam complaints. Instead, simply suggest that your friends visit this issue's permanent Web address, shown below. A complete index at the bottom of the Web page provides you with hyperlinks to any article you'd like to recommend.

The address of this issue is http://WindowsSecrets.com/comp/071129

EDITOR'S BOOKSHELF

Windows Vista Secrets

Get the tips you need about Windows Vista
The all-new Windows Vista Secrets helps novices and experts alike understand Microsoft's latest operating system. "To really appreciate what is in Vista, you almost need to read through the leading book on the product, Windows Vista Secrets, by Brian Livingston and Paul Thurrott," writes Rob Enderle, principal analyst of the Enderle Group, in TechNewsWorld. "It's 595 pages of things you can do with this product — most of which you probably wouldn't have discovered for some time, let alone right at first." Check the book out now for tips you can use.
More information: United States (B&N) / Canada / Elsewhere

Spam-Proof Your E-Mail Address, 2nd Ed.

Spam-Proof Your E-Mail Address, 2nd Ed.
This 32-page e-book by Brian Livingston gives you step-by-step instructions that can prevent 97% of the spam that would otherwise clog an e-mail account. You could call it "Livingston's Spam Secrets." The PDF e-book is the result of months of experiments and tests we conducted. We now receive little or no spam to the addresses we used as guinea pigs. These tests show that you can make your e-mail addresses invisible to spammers, not just battle an ever-growing flood. The methods we describe work with Windows, Apple, and Linux and don't require any filters or block lists — but you can use those in addition to the book's techniques, if you wish. More info

WACKY WEB WEEK

How Disney really feels about Christmas

Disney's 12 Pains of Christmas

Ladies and gentlemen, Thanksgiving is over. It's officially the Christmas season. So put away the turkeys and break out the tinsel, the Christmas tree, the lights, the gift wrapping, the trips to the mall, the crowds, the invitations to in-laws — well, you get the picture.

Christmas. It's enough to make even Disney stress out, as shown by this hilarious 3-minute video from the JibJab guys. Pass the eggnog! Play the video

INDEX

The following topics appear in the free version

TOP STORY	WGA: better, but still not good enough
	The way that WGA works today
	What's new with WGA?
	WGA problems persist for Windows users

KNOWN ISSUES	Save energy without sacrificing after-hours tasks
	Run automated tasks on a sleeping system
	Run tasks before your system sleeps
	Is CO2 Saver spyware?

WACKY WEB WEEK	How Disney really feels about Christmas

You get all of the following in the paid version
PC TUNE-UP	Own any PC in 60 seconds or less
	How hackers set Windows passwords with ease
	Anyone can reset the administrator password
	Domain controller passwords can be reset
	Encrypt your data to stop unauthorized access
	Disable QuickTime until Apple releases a patch

PATCH WATCH	MS's update icons confuse Windows patchers
	Update indicators confuse harried admins
	OneCare 2.0 resets your screensaver
	Apple Leopard is still a bit rough
	URI patch may need firewall adjustments
	Windows Vista patches need some TLC
	Firefox fixes issues by releasing 2.0.0.10
	Use caution when installing .NET service packs
	Intel microcode hotfix released for a 5th time

Paid subscribers can access all old and new paid newsletter content Make a contribution to support our research into Windows and you'll immediately be able to read and search through scores of valuable articles. In addition, paid subscribers are entitled to download valuable content that we license for you at least once every calendar quarter. To upgrade, simply make a contribution of any amount you choose. If you do this by Dec. 5, 2007, you'll instantly be sent the full, paid version of today's newsletter. To upgrade to the paid version of the Windows Secrets Newsletter, please visit our upgrade page. Thanks in advance.

YOUR SUBSCRIPTION

The Windows Secrets Newsletter is published weekly on the 1st through 4th Thursdays of each month, plus occasional news updates. We skip an issue on the 5th Thursday of any month, plus the week of Thanksgiving and the last two weeks of August and December.

Publisher: WindowsSecrets.com LLC, Attn: #120 Editor, 1700 7th Ave., Suite 116, Seattle, WA 98101-1323 USA. Vendors, please send no unsolicited packages to this address (readers' letters are fine).

Editorial Director: Brian Livingston. Editor-at-Large: Fred Langa. Associate Editor: Scott Dunn. Contributing Editors: Susan Bradley, Mark Edwards, Woody Leonhard, Ryan Russell. Research Director: Vickie Stevens. Program Director: Brent Scheffler.

Trademarks: Microsoft and Windows are registered trademarks of Microsoft Corporation. The Windows Secrets series of books is published by Wiley Publishing Inc. The Windows Secrets Newsletter, WindowsSecrets.com, LangaList, LangaList Plus, WinFind, Security Baseline, Patch Watch, Perimeter Scan, Wacky Web Week, the Logo Design (W, S or road, and Star), and the slogan Everything Microsoft Forgot to Mention all are trademarks and service marks of WindowsSecrets.com LLC. All other marks are the trademarks or service marks of their respective owners.

HOW TO SUBSCRIBE: Anyone may subscribe to this newsletter by visiting our free signup page.

WE GUARANTEE YOUR PRIVACY:

1. We will never sell, rent, or give away your address to any outside party, ever.
2. We will never send you any unrequested e-mail, besides newsletter updates.
3. All unsubscribe requests are honored immediately, period. Privacy policy

HOW TO UNSUBSCRIBE: To unsubscribe from the Windows Secrets Newsletter,

Visit our Unsubscribe page.

Copyright © 2007 by WindowsSecrets.com LLC. All rights reserved.