Fighting Microsoft's piracy check

Counterfeiters aren't Microsoft's only opponents in its effort to combat piracy: Some of its customers are against it, too.

The company is forging ahead with a program, Windows Genuine Advantage, tied to its free software downloads and updates, that checks whether the Windows installation on a PC is pirated. But some people, including some who say they own a legitimately acquired copy of Windows, have challenged the need for such validation.

Most of their criticism is directed at the way Microsoft's antipiracy technology, Windows Genuine Advantage, interacts with a PC. Recently, the software maker was lambasted over its WGA Notifications tool, which it pushes out as a "high priority" update alongside security fixes. There have also been complaints about the tool collecting information from PCs and causing system troubles.

"The issue is not that they are trying to reduce the number of pirated copies. It's the unethical way in which they go about it," a CNET News.com reader using the name "jabbotts" wrote in response to a recent story on Microsoft's antipiracy efforts.

But there is more going on than just talk. Some Windows users have started to search for ways around the antipiracy technology, setting up a struggle between Microsoft and WGA opponents. Since the 2004 introduction of the WGA program, multiple hacks and tricks to circumvent the piracy check or to remove the software have been published on the Internet. And the hunt for effective workarounds appears to be continuing.

Windows Genuine Advantage is a stepped-up effort by Microsoft to boost the number of Windows users who actually pay for the operating system. The company has said that roughly a third of Windows copies worldwide have not been acquired legitimately--as a boxed product or bundled onto a machine, for example.

Microsoft has gradually expanded its pirate-busting efforts. Today, Windows users must have their PC electronically approved before they can download add-on Microsoft software such as Windows Media Player and Windows Defender. WGA excludes security updates from this requirement. When the antipiracy program started, validation was optional for downloads.

As the program has grown, so have efforts to circumvent it. One Web site, for example, lists 15 methods--including step-by-step directions and links to file downloads--to disable Microsoft's copyright-check tools and WGA Notifications warning messages.

One of the listed methods is to install the "905474.exe" program. This "crack" was also suggested by CNET News.com readers providing story feedback. The file, named after the number for the support article for WGA on Microsoft's Web site, is widely available on the Internet. (Caution: CNET News.com hasn't tested this application, and it isn't wise to install files from sources that aren't known and trusted.)

"I have licenses for all my PCs," wrote CNET News.com reader "kamwmail-cnet1." But citing a lack of trust in Microsoft, this reader installed the 905474.exe tool. "Install this hack. Boot your PC. You're in business, private business," the reader added.

Other proposals to defeat the piracy checks vary from the simple--such as blocking the Microsoft applications using firewall software--to the more complex, such as replacing files that are part of the checking tools with cracked versions of those files. Some methods require changes to the Windows Registry, which calls for more advanced technical knowledge on the part of the PC owner.

The hacks and workarounds are a sign of the indignation among some Microsoft users, including some CNET News.com readers.

"A few days after the first WGA notification program was released, a workaround was found, so Microsoft reworked the program so the workaround doesn't work, then pushes the software onto people's systems under the guise that it's a critical update," wrote a reader using the nickname "thedreaming."

"It's not a critical update to users, just (to) Microsoft," the reader added.

Some readers say the workarounds are functional, but it isn't clear if they all are. A cautionary note on the Web page that listed 15 ways to bypass WGA also warned that, with the new releases of WGA, some cracks no longer work. It is even possible that some of the hacks will work for one user, but not for another, according to the Web site. CNET News.com did not test any of the workarounds.

Stepped-up effort
Microsoft advanced its antipiracy program in November last year, when it started pushing out a tool called WGA Notifications alongside its security updates. The tool has been sent millions of Windows users in a number of countries. In April, the U.S. joined the list of covered territories, as did the United Kingdom, Malaysia, Australia and New Zealand.

The first time a computer owner runs WGA to check if their version of Windows is genuine, the software sends data on the system back to Microsoft. This information covers the Windows XP product key, the maker of the PC, the operating system version, PC bios information and the user's local setting and language. Microsoft discloses that this information is transferred in its WGA tool license.

In past weeks, reports have emerged that the WGA Notifications software connects to a Microsoft server each time the PC is started--something Microsoft didn't previously disclose. Also, as it has become clear that the tool isn't a finished product, millions of Windows users may unwittingly be subjects in a trial run for a Microsoft antipiracy program.

This has irked some people, even those who have acknowledged Microsoft's right to fight piracy and who have supported the WGA program in the past. Users shouldn't be pushed into being guinea pigs, many readers argued.

"I spent several hours trying to fix an office machine which slowed to a crawl or froze after this update was installed," wrote CNET News.com reader "umbramistweave," in response to a story about the prerelease status of WGA Notifications. "It's beta. It's flawed. It should not have been released as an update."

Other readers also reported PC trouble after installing the WGA software.

"Windows Update should only be used for delivering completed, non-beta software, period," wrote CNET News.com reader "john55440."

In response to the criticism, Microsoft maintains that there is a real benefit in validating a copy of Windows.

"Our experience is that customers--as long as the process is understandable, unobtrusive, quick and painless--appreciate not only their copy of Windows more, but also appreciate Microsoft more," David Lazar, director of the Windows Genuine program at Microsoft, told CNET News.com last week.

That comment brought out some zealots. One reader, using the nickname "imacpwr" wrote: "Mac just keeps looking better and better and better...That's it Microsoft, just keep shooting yourself in the foot. Before you know it you'll be on your knees begging the public to come back."

[dagwud]

Delusions of Validity?

A product validation check makes people appreciate Windows more? Microsoft more? Get real.

I don't care if Microsoft wants to validate my copy of Windows (copies, actually). But it CERTAINLY has absolutely zero affect on how much I appreciate them.

I have to wonder how they collected that "data" and the content validity of the question.

[schubb]

Pointless

As most every tech news outlet has reported at one time, the pirates use Volume license keys from big business. That makes them infinitely harder to shutdown, you invalidate 1 or 2 keys and 10,000 machines go without updates and complain about illegal keys.

They say this is to stop the back room resellers putting pirate copies of windows on machines they sell....sorry I don't buy it.

[komradkyle]

stupid

come on microsoft had a monopoly for years its time it ended

[WJeansonne]

There Will Always Be Software Thieves

The thieves are the one's obviously hemming and hawing about the validity check. You can't cheat an honest man, as the saying goes. As usual they want something free with all the benefits--what a joke. I personally have never run into any problems with it. If they are looking for something "free" they should go try that turkey OS called Linux and watch how fast they come running back to Windows.

[Methuss]

Lazar is dreaming...

"Our experience is that customers--as long as the process is understandable, unobtrusive, quick and painless--appreciate not only their copy of Windows more, but also appreciate Microsoft more," David Lazar, director of the Windows Genuine program at Microsoft, told CNET News.com last week.

Experience with WHO? I don't know a single legitimate customer that would validate (pun intended) that statement. Not to mention the fact that the entire process actually exposes some customers, such as those in finance or military, to violations of law by allowing their systems to be compromized by an outside entity.

[kamwmail-cnet1]

There will always be Microsoft Thievery.

MicroShaft had done it in the pass when they sent out the same info with their Windows 3.1 program. Now they're trying it again with WGA for WinXP. Tell me, Microsoft employee you, why should Microsoft know what programs (non-microsoft programs) are installed on my PC's? Will cookies and script files be sent over next?

As for Linux, yep, already looking into it. Will definitely install Linux on some of those PC cases with that Windoze XP sticker on the side. Hey, can I have a refund if I mail in those XP license stickers? I mean, afterall, you charged me for it and are now driving me off of it.

[Neo Con]

This is a free market, people!

If you don't like the product, don't buy the product. It's ridiculous how people who ***** and moan about Windows and rave about OSX and Linux seem to continue to use Windows. If it gives you that much angst, stop using it! For the love of Pete, take your own advice and switch to one of Microsoft's miriad competitors!

And please don't hack the product illegally and then bask in your own self-righteousness. That only makes life harder for the rest of us trying to make a living writing software.

[gbrayjr]

How irresponsible...

To highlight a crack program with no verification whether it contains a trojan or other malicious software. Disclaimer or not,this is irresponsible. Anyone willing to download some random crack program to get around WGA is really taking a risk, and CNET isn't serving its readers well by featuring such an approach.

[sarmasriram]

Doesnt make sense

I don?t see people having issues with their Car security alarm that goes on and on even though nobody wants to steal it. Everything has a bug! Remember that!
I am sure you'd add all sorts of anti-theft stuff to your car and brag about it (even if it malfunctions once in a while).
But when a software company does it (especially MS), you go bonkers!!!
Take a break guys! Be practical... Microsoft spends loads of money developing these software and nobody would want their hard work to be taken for a ride.
You don?t like it, don?t use it. But whatever u do, stop cribbing!

[heystoopid]

Who needs WGA anyway?

Who needs WGA anyway, for with Windows XP, I've found and excellent p2p torrent file(or HTTP) on the neowin net, with regular updates of security fixes and patches, with either a smart, or user manual select feature!

It sure beats M$'s, adhoc marginalizing approach by a large margin!

At least the net, does provide one with the freedom of choice at this point time!

[andrewholden]

Thanks Microsoft, a new Mac user is born!

I´d like to thank Microsoft for introducing this stupid check - it
was the final straw that made me dump my perfectly valid one year
old Windows XP Pro laptop for a wonderful MacBook Pro! Windows?
Never again!

[wjohn587]

Hooray for Microsoft!!

I'm glad Microsoft is becoming much more aggressive with the WGA tool. I have never understood why some people think they are entitled to free software. Why should I continue to pay for those who steal the operating system and other software?

[mozartsbum]

thanks

As a legitimate Microsoft cumstomer, having purchased Windows XP Professional, I too resent the anti piracy update. It's repeated pop up results in my hitting the red X every time. There are more simple, benign methods of ascertaining that I have a legal copy of the OS. Like anyone going back and forth from a live concert gig, just showing their ticket or stamp is enough to get past the doorman/men. Having the installation of Microsoft spyware is like being body-checked as well as showing proof of purchase in order to go to the toilet or go outside for a breath of fresh air. It all adds up to the global paranoia going on currently because of the neocon anti terrorist feeding frenzy that has eaten up and regurgitated the entrails of the US Constitution and Bill of Rights. Like the useless failure of the USA football team in the World Cup, this isn't evidence of a nation in decline.
Cheers.

[Comment101]

Legitimate Users Harmed by WGA

Contrary to the claim that only thieves are inconvenienced by WGA. I have a legal and valid Windows XP that was incorrectly invalidated by the defective WGA software. This denies me updates and patches to which I am entitled and leaves my system open to the myriad Windows security flaws.

The WGA tool encourages me to buy the software again (the software that I already own) and does not provide any way for me to contact Microsoft over the WGA error.

I am severely and negatively impacted in the following ways:
- Legitimate software that I own has been invalidated.
- I am denied critical Windows updates.
- I either have to take an excessive amount of time to track down contact information and argue with someone at Microsoft over the incorrect invalidation of my software, or I have to simply give in and buy the product again.

I am certain that I am not an isolated case. Microsoft has undoubtedly screwed countless other legitimate product owners.

[kamwmail-cnet1]

MS employees here have a prob with understanding Piracy & PRIVACY.

It appears that the MS employees posting here have extreme difficulty in understanding the difference between Piracy and PRIVACY.

According to MS dictionary, if you value the American fad called PRIVACY, YOU Must be a PIRATE.

[pmfjoe]

PS...

ps. I forgot to add that in all reality, you just own the right to use the software, you dont actually own the software which is why it is called a license. You have to think of it as a long term almost non-revocable lease (I say almost non-revocable because many EULAs have some type of revocation of license section.

[dtrues]

WGA Causes Blue Screen of Death

I finally allowed this thing to be installed on my computer, and what did it get me? It caused my computer to crash immediately upon reboot. If it wasn't for my non-microsoft firewall I'd have been screwed. After replacing the driver which caused the problem, you can't uninstall WGA, I was rewarded with a lovely message telling me that my legitimate copy of Windows wasn't genuine. News to me, my four hundred dollars, and CompUSA. Thanks Uncle Bill, Good Riddence.

[Penguinisto]

Thank heavens I don't use Windows...

Because having Yet Another Hole punched in the firewall just so the OS maker can keep tabs on what I do, and worrying that an update or a feature may not be available because a bug or a smiliar CD Key may make them think that I somehow pirated their OS?

Yuck.

Seriously - my Macintosh doesn't do this at all, and my Linux boxes were installed from .iso files that I legally and freely downloaded.

It must really suck to be forced to subject one's personal data and personal property to the capricious whims of a large software company.

Okay, I can understand the need of a given company to prevent piracy of their products, but seriously... this method is rather intrusive (and costly in terms of bandwidth for those overseas who get taxed for it).

No way, folks... I may never play HalfLife2 and such (though Quake4 runs just fine on my Mac...), but at least I know that no one is rummaging through my computer and leaving open potential holes for crakcers and script kiddies to wriggle in through.

[vc73]

Life in a G8 Country

I am not suprised by the predictable outrage of all these "legitimate" users of Windows XP. In the West, there are copyright and patent laws that are supposed to enhance quality of life and protect each individual's right to innovate (i know its not perfect...). Imagine if our society degraded to the point where all software was pirated (a case akin to Asia's moral fibre today). Who would want to do business? There wouldn't be any capital justification to labour relentlessy; the end would never justify the means. I would like to think we are different. Microsoft has every right to protect their property; it is their fiduciary duty to the Microsoft stockholders and employees. I hope the WGA is implemented immediately upon the launch of VISTA so everyone knows the rules from the get-go.

[Penguinisto]

Turkey?

Dunno ab't that - I've been running various flavors of Linux for over a decade and have been running an exclusive mix of OSX and Linux on my personal machines for three years running now - one of the Linux boxes even operates as a personal media center for my television - it replaced my old DVD player and TiVo very nicely (shrug). I've had to reinstall OSX exactly zero times, and I upgraded one of the Linux boxes once - from SuSE 7.2 to Fedora Core 5. Zero viruses, zero spyware, zero slowdowns in performance (no registry to get corrupted, y'know), and no machine has (to this date anyway) been compromised.

Haven't felt the need to go "running back" yet.